From 51273fe0a818178d284d1854a11c63608e93d55f Mon Sep 17 00:00:00 2001
From: Andrei Ilas <andrei.ilas@oracle.com>
Date: Thu, 7 Nov 2024 16:19:54 +0200
Subject: [PATCH] Fix OKE CP NSG issue

---
 modules/network/nsg-controlplane.tf | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/modules/network/nsg-controlplane.tf b/modules/network/nsg-controlplane.tf
index cced41fc..df101059 100644
--- a/modules/network/nsg-controlplane.tf
+++ b/modules/network/nsg-controlplane.tf
@@ -61,10 +61,7 @@ locals {
       },
       "Allow TCP egress from OKE control plane to pods" : {
         protocol = local.tcp_protocol, port = local.all_ports, destination = local.pod_nsg_id, destination_type = local.rule_type_nsg,
-      },
-      "Allow TCP ingress from pods to kube-apiserver" : {
-        protocol = local.tcp_protocol, port = local.oke_port, source = local.pod_nsg_id, source_type = local.rule_type_nsg,
-      },
+      }
     } : {},
     (var.allow_bastion_cluster_access && local.bastion_nsg_enabled) ? {
       "Allow TCP ingress to kube-apiserver from bastion host" = {