Download as
Browse Code »

Commit 95a2222274d352cdcbd778f81cd24f3bef42faa1

Authored by Paulo Tada
Committed by Rafael Reggiani Manzo
1 parent 9de7b2b9
Exists in master and in 9 other branches automates_core_packing, gov-user-refactoring, gov-user-to-organization, high_contrast, high_contrast_style, mezuro_spb, restore, stable-5.0, stable-5.1

Adding iptables rules for Mezuro machine 

Signed-off-by: Diego Araújo <diegoamc90@gmail.com>
Showing 3 changed files with 3 additions and 0 deletions   Show diff stats
cookbooks/firewall/templates/host-database/iptables-filter.erb
  Diff comments   View file @95a2222
@@ -2,6 +2,7 @@ @@ -2,6 +2,7 @@
2 # Allow access to PostgreSQL 2 # Allow access to PostgreSQL
3 -A INPUT -s <%= node['peers']['integration'] %> -p tcp -m state --state NEW --dport 5432 -j ACCEPT 3 -A INPUT -s <%= node['peers']['integration'] %> -p tcp -m state --state NEW --dport 5432 -j ACCEPT
4 -A INPUT -s <%= node['peers']['social'] %> -p tcp -m state --state NEW --dport 5432 -j ACCEPT 4 -A INPUT -s <%= node['peers']['social'] %> -p tcp -m state --state NEW --dport 5432 -j ACCEPT
  5 +-A INPUT -s <%= node['peers']['mezuro'] %> -p tcp -m state --state NEW --dport 5432 -j ACCEPT
5 6
6 # Allow access to Redis 7 # Allow access to Redis
7 -A INPUT -s <%= node['peers']['integration'] %> -p tcp -m state --state NEW --dport 6379 -j ACCEPT 8 -A INPUT -s <%= node['peers']['integration'] %> -p tcp -m state --state NEW --dport 6379 -j ACCEPT
cookbooks/firewall/templates/host-mezuro/iptables-filter.erb 0 → 100644
  Diff comments   View file @95a2222
@@ -0,0 +1,2 @@ @@ -0,0 +1,2 @@
  1 +# Allow mezuro connect to HTTP
  2 +-A INPUT -s <%= node['peers']['integration'] %> -p tcp -m state --state NEW -m multiport --dports 8082 -j ACCEPT
cookbooks/firewall/templates/host-mezuro/iptables-nat.erb 0 → 100644
  Diff comments   View file @95a2222