Chef-metal and security groups


#1

Can I provision EC2 security groups with chef-metal? Seems like it might be
a nice idea. You certainly don’t want to provision security groups from
chef on a running instance due to security issues, and since chef-metal is
designed to start clusters of machines, it follows that it should also
create the security groups that those instances need to talk to each other.

Doug


#2

That’s on the roadmap for the chef-metal-aws driver and resources, yes;
along with as many of the other AWS things we can manage via an API.

-John

John Ewart - Sr. Software Engineer

jewart@getchef.com – *my: *Linkedin http://www.linkedin.com/in/johnwewart
Twitter http://www.twitter.com/soysamurai

CHEF

GETCHEF.COM http://www.getchef.com/

TM

getchef.com http://www.getchef.com/ Blog
http://www.opscode.com/blog/ Facebook
https://www.facebook.com/getchefdotcom Twitter
https://twitter.com/chef Youtube https://www.youtube.com/getchef

On Wed, Oct 15, 2014 at 11:03 AM, Douglas Garstang doug.garstang@gmail.com
wrote:

Can I provision EC2 security groups with chef-metal? Seems like it might
be a nice idea. You certainly don’t want to provision security groups from
chef on a running instance due to security issues, and since chef-metal is
designed to start clusters of machines, it follows that it should also
create the security groups that those instances need to talk to each other.

Doug


#3

Thanks John!

On Wed, Oct 15, 2014 at 12:53 PM, John Ewart jewart@getchef.com wrote:

That’s on the roadmap for the chef-metal-aws driver and resources, yes;
along with as many of the other AWS things we can manage via an API.

-John

John Ewart - Sr. Software Engineer

jewart@getchef.com – *my: *Linkedin
http://www.linkedin.com/in/johnwewart Twitter
http://www.twitter.com/soysamurai

CHEF

GETCHEF.COM http://www.getchef.com/

TM

getchef.com http://www.getchef.com/ Blog
http://www.opscode.com/blog/ Facebook
https://www.facebook.com/getchefdotcom Twitter
https://twitter.com/chef Youtube https://www.youtube.com/getchef

On Wed, Oct 15, 2014 at 11:03 AM, Douglas Garstang <
doug.garstang@gmail.com> wrote:

Can I provision EC2 security groups with chef-metal? Seems like it might
be a nice idea. You certainly don’t want to provision security groups from
chef on a running instance due to security issues, and since chef-metal is
designed to start clusters of machines, it follows that it should also
create the security groups that those instances need to talk to each other.

Doug


Regards,

Douglas Garstang
http://www.linkedin.com/in/garstang
Email: doug.garstang@gmail.com
Cell: +1-805-340-5627