Merge Request #17

Merged
softwarepublico/softwarepublico!17
Created by Sergio Oliveira

Fix external firewall

The goal of this MR is to use the integration machine as SSH gateway (instead of reverseproxy).

Assignee: Antonio Terceiro
Milestone: None

Merged by Sergio Oliveira

Source branch has been removed
Commits (16)
3 participants
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    We also have to update the ssh_configs in order to use the right ProxyCommand. @athos can you work on that?

    Choose File ...   File name...
    Cancel
  • 31cd1dbcab9d8aa084c2ab720b965f11?s=40&d=identicon
    Athos @athos (Edited )

    Edit: tag MR 18 instead of hard link to it. thx @seocam

    I will, 1st let's make sure everything works properly, please, see !18

    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    @athos you can use: !18

    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 1 new commit:

    • 635ed54c - Add forwarding rules for external ssh connection
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 1 new commit:

    • 1562ab87 - Allow SMTP connections from email to integration
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 2 new commits:

    • 8a871d18 - Setup iptables forward on bootstrap script
    • f533dad5 - Using integration as entry point to other servers
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 1 new commit:

    • 13a720b5 - Added missing chains on iptables commands
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 1 new commit:

    • d902bc15 - Created tmp directory before exec preconfig task
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 31 new commits:

    • 81f6188b - Fixed ssh proxy command for reverseproxy on prod environment
    • a17fd863 - Merge remote-tracking branch 'origin' into fix_external_firewall
    • 28a8fdc6 - DNS doc: don't include any header, just the tables
    • ca349857 - checkpoint + Data for the staging environment
    • 12282a24 - Fix DNS tests
    • 0d471dbc - Adjustments
    • 84b6e8d2 - add iptables filter rules for homologa
    • 0cf50427 - Preprocess all documentation
    • 779c4822 - docs/firewall.rst.in: reformat tables
    • 2ffd92c7 - docs: change version
    • 0f03ffa4 - Documentation v1
    • 484e08a2 - Add DNS tests and documentation generator
    • dee504c4 - Include DNS information in the documentation
    • 2ee1cfc0 - Add task to build docs from the top level
    • b7ed4bec - Using rst instead of markdown for dns tables
    • 5f9c8637 - remove broken link
    • e027d93b - Estrutura básica do Manual de Operação
    • f7aa2bc2 - architecture: placeholder image
    • 11ad1650 - split intro into its own file
    • b7d9fecb - Added firewall docs
    • 01b52992 - Initial documentation to backup/restore
    • c4b4aa28 - Merge remote-tracking branch 'origin/doc' into doc
    • dbb4efb7 - minor wording change
    • 6f79024c - Add task to view PDF documentation
    • d9cc7a19 - Merge branch 'doc'
    • 840fee00 - add pdfupload task to upload the PDF to the git repository
    • df29bbe2 - pdfupload: push only the tag that was just created
    • ad506c07 - docs: move all autogenerated files to _build/
    • 5cd1d036 - Using box from vagrant cloud.
    • c8fcf6d2 - Merge branch 'vagrant-box' into 'master'
    • ee211922 - Merge remote-tracking branch 'origin' into fix_external_firewall
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Também precisamos validar/atualizar os arquivos config/dev/ssh_config e config/homologa/ssh_config.

    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Reassigned to @terceiro

    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 1 new commit:

    • 8897cebd - Allow ssh connections on 5555 (vagrant only)
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 1 new commit:

    • 83f756c4 - Reload node[:fqdn] when /etc/hosts changes
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam

    Added 23 new commits:

    • a7b28c0c - Merge branch 'master' into fix_external_firewall
    • a0ec6a64 - homologa: insert SSH configuration
    • 0190f0ad - Complete config for devevelopment environment
    • 91a1d114 - relay: support an external outgoing relay
    • ff7b3a78 - tests: hit the externally available locations
    • c3f96231 - Rename development environment
    • 4dd0ec80 - pdf: include $SPB_ENV in filename
    • 548fd9e6 - doc: put $SPB_ENV in tag names
    • c574e691 - DNS tests/doc: include SPF data
    • 57ea5789 - Support using lxc containers
    • ff4a882e - Activate the plugins used for noosfero
    • a83978ef - Fix wrong plugin name with double " ie "Plugin""
    • f3b84d8f - Fix activate plugins. Now it uses a rake task to activate all plugins that are enabled
    • 039e2ae8 - Merge branch 'activate_plugins' into 'master'
    • eaad492b - Enabled memcached service on social
    • c3cfe258 - Install and start memcached for colab
    • 5ee6094d - Merge branch 'enable_memcached' into 'master'
    • bf4e46ee - lxc: cache sudo credentials before bringing boxes up
    • fb9fc3fc - fix plugin enablement
    • 10387ca5 - avoid running rake task before it exists
    • 03e701e0 - Merge remote-tracking branch 'origin' into fix_external_firewall
    • 14fcbd84 - Added alternative ssh port
    • b518a8a4 - Updated ssh proxy commands
    Choose File ...   File name...
    Cancel
  • 9fe63c7bd60deeb55e409a1d7dd173f5?s=40&d=identicon
    Sergio Oliveira @seocam
    Choose File ...   File name...
    Cancel