LibertaCasa/salt
LibertaCasa/salt
9
1
Fork 0
Code Issues 5 Pull Requests Releases Activity

Manage backend firewall zone
All checks were successful
ci/lysergic/push/pipeline Pipeline was successful
Details

Browse Source 
Configure backend firewall zones if applicable. Allow all UDP for
cluster traffic.

Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>
This commit is contained in:
Georg Pfuetzenreuter 2023-02-12 06:04:16 +01:00
parent bef66c1f8a
commit c5ce94d7b5
Signed by: Georg
GPG Key ID: 1ED2F138E7E6FF57
2 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
pillar/global/init.sls
View File

@ -26,6 +26,10 @@ firewalld:
public: public:
short: Public short: Public
{{ firewall_interfaces(public) }} {{ firewall_interfaces(public) }}
{%- if backend | length %}
backend:
{{ firewall_interfaces(backend) }}
{%- endif %}
{%- endif %} {%- endif %}
mine_functions: mine_functions:

3
pillar/role/ha-node.sls
View File

@ -3,3 +3,6 @@ firewalld:
internal: internal:
services: services:
- vrrp - vrrp
backend:
protocols:
- udp