From 812e82886202cd9b0396a9ad3202877d1cacfd5d Mon Sep 17 00:00:00 2001
From: Jake Howard <git@theorangeone.net>
Date: Mon, 7 Mar 2022 20:32:14 +0000
Subject: [PATCH] Allow unprivileged ports to access cluster

This is needed for ingress-nginx
---
 terraform/the-ring.tf | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/terraform/the-ring.tf b/terraform/the-ring.tf
index e3e4015..f35475d 100644
--- a/terraform/the-ring.tf
+++ b/terraform/the-ring.tf
@@ -25,4 +25,13 @@ resource "linode_firewall" "the-ring" {
     ipv4     = ["0.0.0.0/0"]
     ipv6     = ["::/0"]
   }
+
+  inbound {
+    label    = "allow-k8s-unprivileged"
+    action   = "ACCEPT"
+    protocol = "TCP"
+    ports    = "30000-32767"
+    ipv4     = ["0.0.0.0/0"]
+    ipv6     = ["::/0"]
+  }
 }