7.0 KiB

Raw Permalink Blame History

terraform-data-newrelic-whitelist

This module provides lists of the IP addresses and domains used by various New Relic agents and services (for example, https://collector.newrelic.com) for communicating with the New Relic agent installed on your server.

This is maintained against the following sources:

The following are not included in the module currently, but PRs for the same are welcome:

Usage

module "newrelic-whitelist" {
  source  = "captn3m0/newrelic-whitelist/data"
  version = "2022.03.07"
}

resource "aws_security_group_rule" "allow_all_to_newrelic" {
  type            = "egress"
  from_port       = 0
  to_port         = 443
  protocol        = "tcp"
  cidr_blocks     = ["${module.newrelic-whitelist.cidr}"]
  security_group_id = "sg-123456"
}

Outputs

Name	Description
apm_agent_domains	Wildcard domain endpoints used by APM agents (For both US and EU accounts)
apm_agent_domains_eu	Wildcard domain endpoints used by APM agents (For EU accounts)
apm_agent_domains_us	Wildcard domain endpoints used by APM agents (For US accounts)
apm_cidrs	List of all New Relic APM CIDRs. Whitelist for egress against 443
apm_cidrs_eu	List of New Relic APM CIDRs (EU). Whitelist for egress against 443
apm_cidrs_us	List of New Relic APM CIDRs (US). Whitelist for egress against 443
browser_domains	List of all New Relic Browser application domains.
browser_domains_eu	List of New Relic Browser application domains (EU).
browser_domains_us	List of New Relic Browser application domains (US).
codestream_domains	Wildcard hostnames for Newrelic Codestream
infra_agent_domains	In order to report data to New Relic, Infrastructure needs outbound access to these domains (For both US and EU accounts)
infra_agent_domains_eu	In order to report data to New Relic, Infrastructure needs outbound access to these domains (For EU accounts)
infra_agent_domains_us	In order to report data to New Relic, Infrastructure needs outbound access to these domains (For US accounts)
infra_cidrs	List of all New Relic Infrastructure Agent CIDRs. Whitelist for egress against 443
infra_cidrs_eu	List of New Relic Infrastructure Agent CIDRs (EU). Whitelist for egress against 443
infra_cidrs_us	List of New Relic Infrastructure Agent CIDRs (US). Whitelist for egress against 443
mobile_domains	List of all New Relic Mobile Application domains.
mobile_domains_eu	List of New Relic Mobile application domains (EU).
mobile_domains_us	List of New Relic Mobile Application domains (US).
opentelemetry_cidrs	CIDRs for all OpenTelemetry integrations (both US and EU customers)
opentelemetry_cidrs_eu	CIDRs for all OpenTelemetry integrations (For EU only)
opentelemetry_cidrs_us	CIDRs for all OpenTelemetry integrations (For US only)
opentelemetry_origins	Host:Port combinations for all OpenTelemetry integrations (both US and EU customers)
opentelemetry_origins_eu	Host:Port combinations for all OpenTelemetry integrations (For EU only)
opentelemetry_origins_us	Host:Port combinations for all OpenTelemetry integrations (For US only)
pixie_domains	Domain:Port combinations for Newrelic pixie integration for all customers
pixie_domains_eu	Domain:Port combinations for Newrelic pixie integration for EU region customers
pixie_domains_us	Domain:Port combinations for Newrelic pixie integration for US region customers
synthetics_cidrs	List of New Relic Synthetic Minion IPs as /32 CIDR for both US and EU accounts
synthetics_cidrs_eu	List of New Relic Synthetic Minion IPs as /32 CIDR for EU accounts
synthetics_cidrs_us	List of New Relic Synthetic Minion IPs as /32 CIDR for US accounts
synthetics_ips	List of New Relic Synthetic Minion IPs for both US and EU accounts
synthetics_ips_eu	List of New Relic Synthetic Minion IPs for EU accounts
synthetics_ips_us	List of New Relic Synthetic Minion IPs for US accounts
synthetics_private_cidrs_eu	Synthetic Private Minion endpoint IPs as CIDR ranges for EU accounts
synthetics_private_cidrs_us	Synthetic Private Minion endpoint IPs as CIDR ranges for US accounts
synthetics_private_domains_eu	Synthetic Private Minion endpoint Domains for EU accounts
synthetics_private_domains_us	Synthetic Private Minion endpoint Domains for US accounts
synthetics_private_ips_eu	Synthetic Private Minion endpoint IPs for eu accounts
synthetics_private_ips_us	Synthetic Private Minion endpoint IPs for US accounts
ticketing_cidrs	Third-party ticketing integrations will be sent from these CIDRs (US and EU)
ticketing_cidrs_eu	Third-party ticketing integrations will be sent from these CIDRs (EU only)
ticketing_cidrs_us	Third-party ticketing integrations will be sent from these CIDRs (US only)
webhook_cidrs	New Relic-generated webhooks for alert policies will be sent from these CIDRs (US and EU)
webhook_cidrs_eu	Same as webhook_cidrs, but exclusively for EU accounts
webhook_cidrs_us	Same as webhook_cidrs, but exclusively for US accounts

Versioning

This module is versioned as per the New Relic "Last Updated" date on the docs website. The versioning scheme is YYYY.MM.DD (with zeros for padding). Changes are usually backwards compatible, but if any breaking changes are made (such as output name changes) between released versions, they will be noted below and in the release notes.

If another release has to be made against the same date, they will be suffixed with a -1, or -2 etc.

2022.03.07

Added

codestream_domains output added

2021.09.28

Added

New outputs for OpenTelemetry Integration; opentelemetry_origins,opentelemetry_origins_us,opentelemetry_origins_eu,opentelemetry_cidrs,opentelemetry_cidrs_us,opentelemetry_cidrs_eu.

2021.09.11

Added

Domains used by Newrelic Pixie are now supported: : pixie_domains,pixie_domains_us,pixie_domains_eu.

2020.10.22

Fixes

apm_domains was mis-leading. Split it into apm_agent_domains and infra_agent_domains.

LICENSE

Licensed under MIT. See nemo.mit-license.org for complete text.

7.0 KiB Raw Permalink Blame History

terraform-data-newrelic-whitelist

Usage

Outputs

Versioning

2022.03.07

Added

2021.09.28

Added

2021.09.11

Added

2020.10.22

Fixes

LICENSE

7.0 KiB

Raw Permalink Blame History