From ab918b07a44fa9659fb15a92e5e0e7dff2e31722 Mon Sep 17 00:00:00 2001
From: Alan <alan@automationlogic.com>
Date: Wed, 8 Mar 2023 09:43:37 +0000
Subject: [PATCH] Updating ec2 instance security group for LZ integration

---
 terraform/environments/oas/ec2.tf | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/terraform/environments/oas/ec2.tf b/terraform/environments/oas/ec2.tf
index 55b09dd8e39..cf81bacee3d 100644
--- a/terraform/environments/oas/ec2.tf
+++ b/terraform/environments/oas/ec2.tf
@@ -105,6 +105,13 @@ resource "aws_security_group" "ec2" {
     protocol    = "tcp"
     cidr_blocks = [local.application_data.accounts[local.environment].inbound_cidr_lz]
   }
+  ingress {
+    description = "http access from LZ to oas-mp to test connectivity"
+    from_port   = 1389
+    to_port     = 1389
+    protocol    = "tcp"
+    cidr_blocks = [local.application_data.accounts[local.environment].inbound_cidr_lz]
+  }
 
   egress {
     description = "Allow AWS SSM Session Manager"
@@ -176,6 +183,20 @@ resource "aws_security_group" "ec2" {
     protocol    = "tcp"
     cidr_blocks = [local.application_data.accounts[local.environment].outbound_access_cidr]
   }
+  egress {
+    description = "http access from LZ to oas-mp to test connectivity"
+    from_port   = 1389
+    to_port     = 1389
+    protocol    = "tcp"
+    cidr_blocks = [local.application_data.accounts[local.environment].inbound_cidr_lz]
+  }
+  egress {
+    description = "http access from LZ to oas-mp to test connectivity"
+    from_port   = 1521
+    to_port     = 1521
+    protocol    = "tcp"
+    cidr_blocks = [local.application_data.accounts[local.environment].inbound_cidr_lz]
+  }
 }
 
 resource "aws_iam_instance_profile" "ec2_instance_profile" {