[MediaWiki-commits] [Gerrit] (WIP) this should work... - change (operations/puppet)

Wed, 08 Jul 2015 10:19:33 -0700 

Elee has uploaded a new change for review.

  https://gerrit.wikimedia.org/r/223581

Change subject: (WIP) this should work...
......................................................................

(WIP) this should work...

Change-Id: I9515036f504d9512da2cb8c2cc5ee74dde5af8de
---
M modules/icinga/manifests/nsca/firewall.pp
1 file changed, 24 insertions(+), 1 deletion(-)


  git pull ssh://gerrit.wikimedia.org:29418/operations/puppet 
refs/changes/81/223581/1

diff --git a/modules/icinga/manifests/nsca/firewall.pp 
b/modules/icinga/manifests/nsca/firewall.pp
index cd792f2..b8de912 100644
--- a/modules/icinga/manifests/nsca/firewall.pp
+++ b/modules/icinga/manifests/nsca/firewall.pp
@@ -4,6 +4,29 @@
 class icinga::nsca::firewall {
     # NSCA on port 5667
     ferm::rule { 'ncsa_allowed':
-        rule => 'saddr (127.0.0.1 $EQIAD_PRIVATE_ANALYTICS1_A_EQIAD 
$EQIAD_PRIVATE_ANALYTICS1_B_EQIAD $EQIAD_PRIVATE_ANALYTICS1_C_EQIAD 
$EQIAD_PRIVATE_ANALYTICS1_D_EQIAD $EQIAD_PRIVATE_LABS_HOSTS1_A_EQIAD 
$EQIAD_PRIVATE_LABS_HOSTS1_B_EQIAD $EQIAD_PRIVATE_LABS_HOSTS1_D_EQIAD 
$EQIAD_PRIVATE_LABS_SUPPORT1_C_EQIAD $EQIAD_PRIVATE_PRIVATE1_A_EQIAD 
$EQIAD_PRIVATE_PRIVATE1_B_EQIAD $EQIAD_PRIVATE_PRIVATE1_C_EQIAD 
$EQIAD_PRIVATE_PRIVATE1_D_EQIAD $EQIAD_PUBLIC_PUBLIC1_A_EQIAD 
$EQIAD_PUBLIC_PUBLIC1_B_EQIAD $EQIAD_PUBLIC_PUBLIC1_C_EQIAD 
$EQIAD_PUBLIC_PUBLIC1_D_EQIAD $ESAMS_PRIVATE_PRIVATE1_ESAMS 
$ESAMS_PUBLIC_PUBLIC1_ESAMS $ULSFO_PRIVATE_PRIVATE1_ULSFO 
$ULSFO_PUBLIC_PUBLIC1_ULSFO 208.80.155.0/27 10.64.40.0/24) proto tcp dport 5667 
ACCEPT;'
+        rule => 'saddr (127.0.0.1 \
+          $EQIAD_PRIVATE_ANALYTICS1_A_EQIAD \
+          $EQIAD_PRIVATE_ANALYTICS1_B_EQIAD \
+          $EQIAD_PRIVATE_ANALYTICS1_C_EQIAD \
+          $EQIAD_PRIVATE_ANALYTICS1_D_EQIAD \
+          $EQIAD_PRIVATE_LABS_HOSTS1_A_EQIAD \
+          $EQIAD_PRIVATE_LABS_HOSTS1_B_EQIAD \
+          $EQIAD_PRIVATE_LABS_HOSTS1_D_EQIAD \
+          $EQIAD_PRIVATE_LABS_SUPPORT1_C_EQIAD \
+          $EQIAD_PRIVATE_PRIVATE1_A_EQIAD \
+          $EQIAD_PRIVATE_PRIVATE1_B_EQIAD \
+          $EQIAD_PRIVATE_PRIVATE1_C_EQIAD \
+          $EQIAD_PRIVATE_PRIVATE1_D_EQIAD \
+          $EQIAD_PUBLIC_PUBLIC1_A_EQIAD \
+          $EQIAD_PUBLIC_PUBLIC1_B_EQIAD \
+          $EQIAD_PUBLIC_PUBLIC1_C_EQIAD \
+          $EQIAD_PUBLIC_PUBLIC1_D_EQIAD \
+          $ESAMS_PRIVATE_PRIVATE1_ESAMS \
+          $ESAMS_PUBLIC_PUBLIC1_ESAMS \
+          $ULSFO_PRIVATE_PRIVATE1_ULSFO \
+          $ULSFO_PUBLIC_PUBLIC1_ULSFO \
+          208.80.155.0/27 \
+          10.64.40.0/24) \
+        proto tcp dport 5667 ACCEPT;'
     }
 }

-- 
To view, visit https://gerrit.wikimedia.org/r/223581
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings

Gerrit-MessageType: newchange
Gerrit-Change-Id: I9515036f504d9512da2cb8c2cc5ee74dde5af8de
Gerrit-PatchSet: 1
Gerrit-Project: operations/puppet
Gerrit-Branch: production
Gerrit-Owner: Elee <e...@mit.edu>

_______________________________________________
MediaWiki-commits mailing list
MediaWiki-commits@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits

Reply via email to