We began with a single managed node group created in terraform, but realized we needed to create some groups with node taints and found that using worker_groups_launch_template was the easiest way to accomplish that.
However, we need connectivity between both of these ASGs. I first tried specifying additional_security_group_ids = [module.eks.cluster_primary_security_group_id], which works networking-wise. However, our nginx-ingress-controller errors when the ec2 instance is part of multiple SGs.
Is it possible to create a worker group with only the cluster_primary_security_group_id SG?
Thanks in advance for any help!