Ryan Lane has uploaded a new change for review. https://gerrit.wikimedia.org/r/114436
Change subject: Add DNS ferm rules for labs DNS ...................................................................... Add DNS ferm rules for labs DNS Change-Id: I8a566583c783b298751d974e072053f8fae621f0 --- M manifests/openstack.pp 1 file changed, 5 insertions(+), 0 deletions(-) git pull ssh://gerrit.wikimedia.org:29418/operations/puppet refs/changes/36/114436/1 diff --git a/manifests/openstack.pp b/manifests/openstack.pp index c0751be..f2c63f3 100644 --- a/manifests/openstack.pp +++ b/manifests/openstack.pp @@ -17,6 +17,11 @@ rule => 'saddr (0.0.0.0/0) proto tcp dport (http https) ACCEPT;', } + # Labs DNS + ferm::rule { 'dns_public': + rule => 'saddr (0.0.0.0/0) proto (udp tcp) dport 53 ACCEPT;', + } + # LDAP ferm::rule { 'ldap_private_labs': rule => 'saddr (10.0.0.0/8 208.80.152.0/22) proto tcp dport (ldap ldaps) ACCEPT;', -- To view, visit https://gerrit.wikimedia.org/r/114436 To unsubscribe, visit https://gerrit.wikimedia.org/r/settings Gerrit-MessageType: newchange Gerrit-Change-Id: I8a566583c783b298751d974e072053f8fae621f0 Gerrit-PatchSet: 1 Gerrit-Project: operations/puppet Gerrit-Branch: production Gerrit-Owner: Ryan Lane <rl...@wikimedia.org> _______________________________________________ MediaWiki-commits mailing list MediaWiki-commits@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits