My office has two floors, each with it's own public I.P address. I have a AWS Security Group that I I add to all our of instances that whitelists the I.P addresses and the ports that we use. I tried adding this in the cloudformation script but got an error message that it wasn't allowed. Any thoughts on how I can whitelist both of our public I.Ps?
We have redirected your issue in-house and will keep you posted.
Thanks for your time.
Unfortunately it is not possible to my knowledge to do this in the Cloud Formation scripts themselves. Each CIDR requires separate entries and you could potentially have an arbitrary number of such IP addresses, so we only support one. However, you do have the Bastion servers available as part of the stack. So you can potentially set up tunneling or a SOCKS proxy through the bastion servers.
Alternatively, just spin up the cluster with a single CIDR and then manually go in and add the CIDR to the desired subnets.