From 5a270b7bf8de8c5846e91d72ffd9f594cbd8b921 Mon Sep 17 00:00:00 2001
From: Bryant Biggs <bryantbiggs@gmail.com>
Date: Sun, 18 Dec 2022 12:36:39 -0500
Subject: [PATCH] feat: Add additional port for `metrics-server` to recommended
 rules (#2353)

---
 node_groups.tf | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/node_groups.tf b/node_groups.tf
index 6561faec5a..fa7c1e2a62 100644
--- a/node_groups.tf
+++ b/node_groups.tf
@@ -115,6 +115,16 @@ locals {
       type        = "ingress"
       self        = true
     }
+    # metrics-server
+    ingress_cluster_8443_webhook = {
+      description                   = "Cluster API to node 4443/tcp webhook"
+      protocol                      = "tcp"
+      from_port                     = 4443
+      to_port                       = 4443
+      type                          = "ingress"
+      source_cluster_security_group = true
+    }
+    # Karpenter
     ingress_cluster_8443_webhook = {
       description                   = "Cluster API to node 8443/tcp webhook"
       protocol                      = "tcp"
@@ -123,6 +133,7 @@ locals {
       type                          = "ingress"
       source_cluster_security_group = true
     }
+    # ALB controller, NGINX
     ingress_cluster_9443_webhook = {
       description                   = "Cluster API to node 9443/tcp webhook"
       protocol                      = "tcp"