2.1 KiB
2.1 KiB
terraform-http-setcronjob-whitelist
This module scrapes the SetCronJob IPs from their website and makes them available as a list. Since this module dynamically generates the list, it won't be updated alongside updates to the SetCronJob list updates. SetCronJob used to publish updates to the IPs on a mailing list, but since that isn't active anymore, you can subscribe to an unofficial announce list at https://tinyletter.com/setcronjob-unofficial-ip-updates.
The SetCronjob service documentation points to the following text files for IPs that they use:
- https://www.setcronjob.com/ip.txt
- https://www.setcronjob.com/ipv4.txt
- https://www.setcronjob.com/ipv6.txt
Usage
module "setcronjob-whitelist" {
source = "captn3m0/setcronjob-whitelist/http"
version = "0.0.1"
}
resource "aws_security_group_rule" "allow_all_from_scj" {
type = "ingress"
from_port = 0
to_port = 443
protocol = "tcp"
cidr_blocks = ["${module.scj.ipv4_cidr}"]
security_group_id = "sg-123456"
}
Outputs
Name | Description |
---|---|
ips | List of all SetCronjob egress IPs, scraped from https://www.setcronjob.com/ip.txt |
ipv4 | List of all SetCronjob egress IPv4 IPs, scraped from https://www.setcronjob.com/ipv4.txt |
ipv4_cidr | List of all SetCronjob egress IPv4 IPs as /32 CIDRs, scraped from https://www.setcronjob.com/ipv4.txt |
ipv6 | List of all SetCronjob egress IPv6 IPs, scraped from https://www.setcronjob.com/ipv6.txt |
ipv6_cidr | List of all SetCronjob egress IPv6 IPs as /128 CIDRs, scraped from https://www.setcronjob.com/ipv6.txt |
LICENSE
Licensed under MIT. See nemo.mit-license.org for complete text.