Skip to content

Commit 75c94e4

Browse files
Alex-WelshAlex-Welsh
committed
Enable ssh on admin_oc, disable on provision_oc
1 parent 614853b commit 75c94e4

File tree

1 file changed

+11
-11
lines changed
  • etc/kayobe/inventory/group_vars/all

1 file changed

+11
-11
lines changed

etc/kayobe/inventory/group_vars/all/firewall

Lines changed: 11 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -50,8 +50,8 @@ stackhpc_controller_firewalld_rules_default:
5050
# Common
5151
- rules:
5252
- service: ssh
53-
zone: "{{ provision_oc_net_name | net_zone }}"
54-
network: "{{ provision_oc_net_name }}"
53+
zone: "{{ admin_oc_net_name | net_zone }}"
54+
network: "{{ admin_oc_net_name }}"
5555
state: enabled
5656
- service: dhcp
5757
zone: "{{ provision_wl_net_name | net_zone }}"
@@ -148,13 +148,13 @@ stackhpc_compute_firewalld_rules_default:
148148
# Common
149149
- rules:
150150
- service: ssh
151+
zone: "{{ admin_oc_net_name | net_zone }}"
152+
network: "{{ admin_oc_net_name }}"
151153
state: enabled
152-
zone: "{{ provision_oc_net_name | net_zone }}"
153-
network: "{{ provision_oc_net_name }}"
154154
- service: dhcpv6-client
155-
state: disabled
156155
zone: "{{ public_net_name | net_zone }}"
157156
network: "{{ public_net_name }}"
157+
state: disabled
158158
enabled: true
159159
- rules:
160160
- service: ssh
@@ -197,8 +197,8 @@ stackhpc_storage_firewalld_rules_default:
197197
# Common
198198
- rules:
199199
- service: ssh
200-
zone: "{{ provision_oc_net_name | net_zone }}"
201-
network: "{{ provision_oc_net_name }}"
200+
zone: "{{ admin_oc_net_name | net_zone }}"
201+
network: "{{ admin_oc_net_name }}"
202202
state: enabled
203203
- port: 9283/tcp
204204
zone: "{{ provision_oc_net_name | net_zone }}"
@@ -266,8 +266,8 @@ stackhpc_wazuh_manager_infra_vm_firewalld_rules: >-
266266
stackhpc_wazuh_manager_infra_vm_firewalld_rules_default:
267267
- rules:
268268
- service: ssh
269-
zone: "{{ provision_oc_net_name | net_zone }}"
270-
network: "{{ provision_oc_net_name }}"
269+
zone: "{{ admin_oc_net_name | net_zone }}"
270+
network: "{{ admin_oc_net_name }}"
271271
state: enabled
272272
- port: 1514/tcp
273273
zone: "{{ provision_oc_net_name | net_zone }}"
@@ -343,8 +343,8 @@ stackhpc_seed_firewalld_rules_default:
343343
# Common
344344
- rules:
345345
- service: ssh
346-
zone: "{{ provision_oc_net_name | net_zone }}"
347-
network: "{{ provision_oc_net_name }}"
346+
zone: "{{ admin_oc_net_name | net_zone }}"
347+
network: "{{ admin_oc_net_name }}"
348348
state: enabled
349349
- service: dhcp
350350
zone: "{{ provision_oc_net_name | net_zone }}"

0 commit comments

Comments
 (0)