X-Git-Url: http://git.squeep.com/?p=awsible;a=blobdiff_plain;f=roles%2Fcommon-infrastructure%2Ftasks%2Fmain.yml;h=c3495bca78eb010105cd3a3d389c4273190efebe;hp=0d3910b836b14ae59f4f37df2818a31a85202dc8;hb=1aa43a2d86c2b0c465eaa0a3a838a340679606a7;hpb=d3de5c7023fc31297d813e0496480e37329f42ad

diff --git a/roles/common-infrastructure/tasks/main.yml b/roles/common-infrastructure/tasks/main.yml
index 0d3910b..c3495bc 100644
--- a/roles/common-infrastructure/tasks/main.yml
+++ b/roles/common-infrastructure/tasks/main.yml
@@ -18,3 +18,23 @@
     - proto: all
       cidr_ip: 0.0.0.0/0
   register: sg_ssh
+
+- name: sg icmp
+  delegate_to: localhost
+  become: no
+  ec2_group:
+    vpc_id: "{{ vpc.vpc.id }}"
+    region: "{{ vpc_region }}"
+    state: present
+    name: icmp
+    description: "allow icmp from anywhere"
+    purge_rules: false
+    rules:
+    - proto: icmp
+      from_port: -1
+      to_port: -1
+      cidr_ip: 0.0.0.0/0
+    rules_egress:
+    - proto: all
+      cidr_ip: 0.0.0.0/0
+  register: sg_icmp