Remove 0.0.0.0/0 and use the VPC's default CIDR for the security group

Varun Rao Bhamidimarri · Varun Rao Bhamidimarri · commit dfeaf6c16b6c · 2023-02-23T09:20:37.000-08:00
diff --git a/aws_emr_blog_v3/cloudformation/rds-database.template b/aws_emr_blog_v3/cloudformation/rds-database.template
@@ -17,7 +17,7 @@ Parameters:
     Type: String
     MinLength: '9'
     MaxLength: '18'
-    Default: 0.0.0.0/0
+    Default: 10.0.0.0/16
     AllowedPattern: (\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})/(\d{1,2})
     ConstraintDescription: It must be a valid IP CIDR range of the form x.x.x.x/x.
       Suggest to enable access to your IP address only. Pls get your address using
diff --git a/aws_emr_blog_v3/cloudformation/step2_ranger-rds-emr.template b/aws_emr_blog_v3/cloudformation/step2_ranger-rds-emr.template
@@ -363,6 +363,7 @@ Resources:
           - !Ref 'PrivateSubnet2AID'
           - !Ref AWS::NoValue
         VPC: !Ref VPC
+        ClientIP: !Ref CIDRAccessToPrivateSubnetResources
         MySQLDBPassword: !Ref DBRootPassword
         MySQLDBUserName: !Ref DBUserName
   CopyS3Artifacts:
