BBlack has submitted this change and it was merged.
Change subject: Add ferm rules for DNS auth servers
......................................................................
Add ferm rules for DNS auth servers
Change-Id: I181057c43574fb69018dffb75538d9ef22e36f1c
---
M manifests/role/authdns.pp
1 file changed, 11 insertions(+), 0 deletions(-)
Approvals:
Alexandros Kosiaris: Looks good to me, but someone else must approve
BBlack: Looks good to me, approved
jenkins-bot: Verified
diff --git a/manifests/role/authdns.pp b/manifests/role/authdns.pp
index f4328de..60d3c92 100644
--- a/manifests/role/authdns.pp
+++ b/manifests/role/authdns.pp
@@ -44,6 +44,17 @@
nameservers => $role::authdns::data::nameservers,
gitrepo => $role::authdns::data::gitrepo,
}
+
+ ferm::service { 'udp_dns_auth':
+ proto => 'udp',
+ notrack => true,
+ port => '53',
+ }
+
+ ferm::service { 'tcp_dns_auth':
+ proto => 'tcp',
+ port => '53',
+ }
}
# This is for the monitoring host to monitor the shared public addrs
--
To view, visit https://gerrit.wikimedia.org/r/277258
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings
Gerrit-MessageType: merged
Gerrit-Change-Id: I181057c43574fb69018dffb75538d9ef22e36f1c
Gerrit-PatchSet: 3
Gerrit-Project: operations/puppet
Gerrit-Branch: production
Gerrit-Owner: Muehlenhoff <[email protected]>
Gerrit-Reviewer: Alexandros Kosiaris <[email protected]>
Gerrit-Reviewer: BBlack <[email protected]>
Gerrit-Reviewer: Faidon Liambotis <[email protected]>
Gerrit-Reviewer: jenkins-bot <>
_______________________________________________
MediaWiki-commits mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits
