From 81d62ec93652b65b33d6f782457fd70da5dd0831 Mon Sep 17 00:00:00 2001 From: Dan Hiris Date: Tue, 7 Feb 2023 17:28:07 -0700 Subject: [PATCH 1/3] external network load balancers need to allow different CIDRs for health checks --- main.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/main.tf b/main.tf index 0ae11fc..76c195e 100644 --- a/main.tf +++ b/main.tf @@ -13,7 +13,7 @@ resource "google_compute_region_health_check" "backend_service_loadbalancer_heal } locals { - healthcheck_prober_ip_ranges = ["35.191.0.0/16", "130.211.0.0/22"] + healthcheck_prober_ip_ranges = [35.191.0.0/16, 209.85.152.0/22, 209.85.204.0/22] } resource "google_compute_region_backend_service" "accesstier" { From 69aca801855baff15f81c79fb2347f82d4acba9c Mon Sep 17 00:00:00 2001 From: Dan Hiris Date: Tue, 7 Feb 2023 17:40:17 -0700 Subject: [PATCH 2/3] external network load balancers need to allow different CIDRs for health checks --- main.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/main.tf b/main.tf index 76c195e..e616dd9 100644 --- a/main.tf +++ b/main.tf @@ -13,7 +13,7 @@ resource "google_compute_region_health_check" "backend_service_loadbalancer_heal } locals { - healthcheck_prober_ip_ranges = [35.191.0.0/16, 209.85.152.0/22, 209.85.204.0/22] + healthcheck_prober_ip_ranges = ["35.191.0.0/16", "209.85.152.0/22", "209.85.204.0/22"] } resource "google_compute_region_backend_service" "accesstier" { From 029413cb4c4f9210952cd4135a6ca3c96fcad92d Mon Sep 17 00:00:00 2001 From: Dan Hiris Date: Tue, 7 Feb 2023 18:56:22 -0700 Subject: [PATCH 3/3] external NLB health check CIDRs --- main.tf | 1 + 1 file changed, 1 insertion(+) diff --git a/main.tf b/main.tf index e616dd9..d3e677f 100644 --- a/main.tf +++ b/main.tf @@ -13,6 +13,7 @@ resource "google_compute_region_health_check" "backend_service_loadbalancer_heal } locals { + # The health check for external NLBs come from these 3 CIDRs. healthcheck_prober_ip_ranges = ["35.191.0.0/16", "209.85.152.0/22", "209.85.204.0/22"] }