From 4c174a2fb5f6125fe3829d64b828c1ef3c89b769 Mon Sep 17 00:00:00 2001
From: Mike Cowgill <moofish32@gmail.com>
Date: Mon, 22 Oct 2018 10:58:54 -0700
Subject: [PATCH] these have no effect

---
 lib/eks-node-group.ts | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/lib/eks-node-group.ts b/lib/eks-node-group.ts
index d44f0d9..a688929 100644
--- a/lib/eks-node-group.ts
+++ b/lib/eks-node-group.ts
@@ -86,9 +86,12 @@ export class EksNodeGroupStack extends cdk.Stack {
       `  --region ${new cdk.AwsRegion()}`
     );
 
+    this.workerNodeASG.connections.allowToAnyIPv4(new ec2.AllConnections());
     this.workerNodeASG.connections.allowFrom(controlPlaneSG, CP_WORKER_PORTS);
     this.workerNodeASG.connections.allowFrom(controlPlaneSG, API_PORTS);
     this.workerNodeASG.connections.allowInternally(new ec2.AllConnections());
+    // this line has no effect in the stack
+    this.workerNodeASG.connections.allowTo(new ec2.AnyIPv4(), new ec2.AllConnections());
     const cpConnection = controlPlaneSG.connections;
     cpConnection.allowTo(this.workerNodeASG, CP_WORKER_PORTS);
     cpConnection.allowTo(this.workerNodeASG, API_PORTS);