-
Notifications
You must be signed in to change notification settings - Fork 13
/
Copy pathlogs.yml
39 lines (39 loc) · 1.77 KB
/
logs.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
---
#
# Firewall configuration.
#
iptables_allow_icmp_inbound:
- "{{ all.ip_addresses['umcg']['net1'] }}"
- "{{ all.ip_addresses['umcg']['net2'] }}"
- "{{ all.ip_addresses['umcg']['net3'] }}"
- "{{ all.ip_addresses['umcg']['net4'] }}"
- "{{ all.ip_addresses['rug']['bwp_net'] }}"
- "{{ all.ip_addresses['rug']['operator'] }}"
- "{{ all.ip_addresses['gcc']['cloud_net'] }}"
- "{{ fender_cluster.ip_addresses['corridor']['public'] }}"
- "{{ gearshift_cluster.ip_addresses['airlock']['vlan16'] }}"
- "{{ hyperchicken_cluster.ip_addresses['portal']['public'] }}"
- "{{ nibbler_cluster.ip_addresses['tunnel']['vlan16'] }}"
- "{{ talos_cluster.ip_addresses['reception']['vlan16'] }}"
- "{{ wingedhelix_cluster.ip_addresses['wh-porch']['vlan16'] }}"
- "{{ betabarrel_cluster.ip_addresses['bb-porch']['vlan16'] }}"
- "{{ copperfist_cluster.ip_addresses['cf-porch']['external'] }}"
iptables_allow_ssh_inbound:
- "{{ all.ip_addresses['umcg']['net1'] }}"
- "{{ all.ip_addresses['umcg']['net2'] }}"
- "{{ all.ip_addresses['umcg']['net3'] }}"
- "{{ all.ip_addresses['umcg']['net4'] }}"
- "{{ fender_cluster.ip_addresses['corridor']['public'] }}"
- "{{ gearshift_cluster.ip_addresses['airlock']['vlan16'] }}"
- "{{ hyperchicken_cluster.ip_addresses['portal']['public'] }}"
- "{{ nibbler_cluster.ip_addresses['tunnel']['vlan16'] }}"
- "{{ talos_cluster.ip_addresses['reception']['vlan16'] }}"
- "{{ wingedhelix_cluster.ip_addresses['wh-porch']['vlan16'] }}"
- "{{ betabarrel_cluster.ip_addresses['bb-porch']['vlan16'] }}"
- "{{ copperfist_cluster.ip_addresses['cf-porch']['external'] }}"
iptables_allow_logs_inbound:
- ANY
# This is enforcing that log servers uses `yum_repos` to create
# yum repositories, since repo servers cannot use Pulp
repo_manager: 'none'
...