From c8d1467c6d1e76cf22417094aebc5bc09115476c Mon Sep 17 00:00:00 2001
From: Z4ck404 <zakaria.elbazi@netapp.com>
Date: Wed, 27 Mar 2024 15:35:36 +0100
Subject: [PATCH] [examples] dont enforce inbound SG rules on privatelink
 traffic in NLBs

---
 examples/configure-existing-ofas-with-private-link/main.tf | 2 ++
 examples/from-scratch-with-private-link/main.tf            | 1 +
 2 files changed, 3 insertions(+)

diff --git a/examples/configure-existing-ofas-with-private-link/main.tf b/examples/configure-existing-ofas-with-private-link/main.tf
index f229c56..e8ffea1 100644
--- a/examples/configure-existing-ofas-with-private-link/main.tf
+++ b/examples/configure-existing-ofas-with-private-link/main.tf
@@ -38,6 +38,8 @@ resource "aws_lb" "this" {
   enable_deletion_protection       = false
   enable_cross_zone_load_balancing = true
 
+  enforce_security_group_inbound_rules_on_private_link_traffic = "off"
+
 }
 
 resource "aws_vpc_endpoint_service" "this" {
diff --git a/examples/from-scratch-with-private-link/main.tf b/examples/from-scratch-with-private-link/main.tf
index 7289566..a37e7e1 100644
--- a/examples/from-scratch-with-private-link/main.tf
+++ b/examples/from-scratch-with-private-link/main.tf
@@ -76,6 +76,7 @@ resource "aws_lb" "this" {
   enable_deletion_protection       = false
   enable_cross_zone_load_balancing = true
 
+  enforce_security_group_inbound_rules_on_private_link_traffic = "off"
 }
 
 resource "aws_vpc_endpoint_service" "this" {