cloud-config.yml.tt in kite-0.2.0

- old
+ new
@@ -37,27 +37,43 @@
 - name: vault-default
   cloud_properties:
     instance_type: t2.micro
     ephemeral_disk: {size: 3000, type: gp2}
     security_groups: [vault-sg, bosh_sg]
+- name: ingress_default
+  cloud_properties:
+    instance_type: t2.micro
+    ephemeral_disk: {size: 3000, type: gp2}
+    security_groups: [ingress-sg, bosh_sg]
 
 disk_types:
 - name: default
   disk_size: 3000
   cloud_properties: {type: gp2}
 - name: large
   disk_size: 50_000
   cloud_properties: {type: gp2}
 
 networks:
+- name: platform_dmz
+  type: manual
+  subnets:
+  - az: z1
+    range: <%= @values['aws']['public_subnet']['network'] %>
+    gateway: <%= @values['aws']['public_subnet']['gateway'] %>
+    reserved: [<%= ip_range(@public_subnet, (1..10)) %>] # Reserved range for the gateway, BOSH Director etc
+    # static: [<%= ip_range(@public_subnet, (11..16)) %>] # Static IP range for Vault, Concourse web panel, nginx etc
+    dns: [<%= @public_subnet[8].to_s %>]
+    cloud_properties: {subnet: <%= @tf_output['dmz_subnet_id'] %>}
+
 - name: platform_net
   type: manual
   subnets:
   - az: z1
     range: <%= @values['aws']['private_subnet']['network'] %>
     gateway: <%= @values['aws']['private_subnet']['gateway'] %>
     reserved: [<%= ip_range(@private_subnet, (1..10)) %>] # Reserved range for the gateway, BOSH Director etc
-    static: [<%= ip_range(@private_subnet, (11..13)) %>] # Static IP range for Vault, Concourse web panel, nginx etc
+    static: [<%= ip_range(@private_subnet, (11..20)) %>] # Static IP range for Vault, Concourse web panel, nginx etc
     dns: [<%= @private_subnet[8].to_s %>]
     cloud_properties: {subnet: <%= @tf_output['platform_subnet_id'] %>}
 - name: vip
   type: vip
 