diff options
| author | Scott Dodson <sdodson@redhat.com> | 2017-08-11 12:03:58 -0400 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2017-08-11 12:03:58 -0400 |
| commit | 3409e6db205b6b24914e16c62972de50071f4051 (patch) | |
| tree | dbfacaf9d6640241ee5dd7a2446d330a4e12283e /roles/openshift_master/defaults/main.yml | |
| parent | 57d7984bc7d7f64184c0defd3cc305cb3ef2708f (diff) | |
| parent | 7d50ffe98dfa17e3fb72627699c794843ed5295d (diff) | |
| download | openshift-3409e6db205b6b24914e16c62972de50071f4051.tar.gz openshift-3409e6db205b6b24914e16c62972de50071f4051.tar.bz2 openshift-3409e6db205b6b24914e16c62972de50071f4051.tar.xz openshift-3409e6db205b6b24914e16c62972de50071f4051.zip | |
Merge pull request #4797 from kwoodson/os_firewall_refactor
Refactor the firewall workflow.
Diffstat (limited to 'roles/openshift_master/defaults/main.yml')
| -rw-r--r-- | roles/openshift_master/defaults/main.yml | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/roles/openshift_master/defaults/main.yml b/roles/openshift_master/defaults/main.yml index 2d3ce5bcd..a4c178908 100644 --- a/roles/openshift_master/defaults/main.yml +++ b/roles/openshift_master/defaults/main.yml @@ -1,4 +1,21 @@ --- +r_openshift_master_firewall_enabled: True +r_openshift_master_use_firewalld: False + openshift_node_ips: [] r_openshift_master_clean_install: false r_openshift_master_etcd3_storage: false +r_openshift_master_os_firewall_enable: true +r_openshift_master_os_firewall_deny: [] +r_openshift_master_os_firewall_allow: +- service: api server https + port: "{{ openshift.master.api_port }}/tcp" +- service: api controllers https + port: "{{ openshift.master.controllers_port }}/tcp" +- service: skydns tcp + port: "{{ openshift.master.dns_port }}/tcp" +- service: skydns udp + port: "{{ openshift.master.dns_port }}/udp" +- service: etcd embedded + port: 4001/tcp + cond: "{{ groups.oo_etcd_to_config | default([]) | length == 0 }}" |