fix: Modify default ACL rules in ibm_catalog.json

[ocofaigh]

Updated the default_value for network_acls to include modified TCP rules.

Description

Release required?

• No release
• Patch release (x.x.X)
• Minor release (x.X.x)
• Major release (X.x.x)

Release notes content

Run the pipeline

If the CI pipeline doesn't run when you create the PR, the PR requires a user with GitHub collaborators access to run the pipeline.

Run the CI pipeline when the PR is ready for review and you expect tests to pass. Add a comment to the PR with the following text:

/run pipeline

Checklist for reviewers

• If relevant, a test for the change is included or updated with this PR.
• If relevant, documentation for the change is included or updated with this PR.

For mergers

• Use a conventional commit message to set the release level. Follow the guidelines.
• Include information that users need to know about the PR in the commit message. The commit message becomes part of the GitHub release notes.
• Use the Squash and merge option.

[ocofaigh]

/run pipeline

[ocofaigh]

The test is failing because the cluster is coming up with a degraded ingress:

Projects time out after waiting for 20mins for the plan to complete, however the plan itself will continue to run for 90mins trying to connect to the cluster using the data.ibm_container_vpc_cluster.cluster waiting for it to be in a "Normal" state:

Projects UI after 20mins:

Schematics:

 2025/10/24 12:24:51 Terraform plan | Error: timeout while waiting for state to become 'normal' (last state: 'warning', timeout: 1h30m0s)
 2025/10/24 12:24:51 Terraform plan | 
 2025/10/24 12:24:51 Terraform plan |   with data.ibm_container_vpc_cluster.cluster[0],
 2025/10/24 12:24:51 Terraform plan |   on provider.tf line 22, in data "ibm_container_vpc_cluster" "cluster":
 2025/10/24 12:24:51 Terraform plan |   22: data "ibm_container_vpc_cluster" "cluster" {

There seems to be an issue with the network ACLs used here, so I'll have to review them

[vkuma17]

seems like we have to add 443 ports both ways for inbound as well as outbound
inbound-rule-1 -> (allow from source 443 port to any destination port)
inbound-rule-2 -> (allow from any source port to 443 destination port)

and same for outbound,
I tested and if i remove one rule openshift web console doesn't open and if i remove the other cluster is not able to pull external images like nginx or alpine from dockerhub

[ocofaigh]

/run pipeline

[vkuma17]

/run pipeline

[vkuma17]

/run pipeline

[vkuma17]

/run pipeline

[vkuma17]

/run pipeline

[vkuma17]

/run pipeline

[vkuma17]

/run pipeline

[terraform-ibm-modules-ops]

🎉 This PR is included in version 1.10.1 🎉

The release is available on:

• GitHub release
• v1.10.1

Your semantic-release bot 📦🚀