default.rb
819 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
package 'iptables-services'
service 'iptables' do
action :enable
supports :restart => true
end
template '/etc/sysconfig/iptables' do
owner 'root'
group 'root'
mode 0644
notifies :restart, 'service[iptables]'
end
cookbook_file "/etc/nginx/#{node['config']['external_hostname']}.crt" do
owner 'root'
group 'root'
mode 0600
notifies :restart, 'service[nginx]'
end
cookbook_file "/etc/sysctl.d/ip_forward.conf" do
owner 'root'
group 'root'
mode 0644
end
execute 'sysctl -w net.ipv4.ip_forward=1'
cookbook_file "/etc/nginx/#{node['config']['external_hostname']}.key" do
owner 'root'
group 'root'
mode 0600
notifies :restart, 'service[nginx]'
end
template '/etc/nginx/conf.d/reverse_proxy.conf' do
owner 'root'
group 'root'
mode 0644
notifies :restart, 'service[nginx]'
end