satellite_firewall role

SatelliteQE / ansible-satellite6

Ansible playbooks for Satellite 6 systems' management

GNU General Public License v3.0

4 stars 10 forks source link

satellite_firewall role #21

Open rdrazny opened 6 years ago

rdrazny commented 6 years ago

Initial version of satellite_firewall role. Opens network ports required by Satellite 6 to work correctly, both using firewalld (RHEL7+) or iptables (RHEL6 and lower).

ogajduse commented 6 years ago

I was thinking about using one of the OASIS roles named firewalld for RHEL7 only. Our satellite_firewall role will be some kind of meta role if in this case.

Possible usage:

- name: Open Satellite ports using firewalld (role)
  include_role:
    name: oasis-roles.firewalld
  with_items:
    - "{{ common_ports }}"
    - "{{ satellite_ports }}"
    - "{{ capsule_ports }}"
  when:
    - ansible_distribution == "RedHat"
    - ansible_distribution_major_version|int >= 7

ogajduse commented 6 years ago

Is the capsule_firewall role worth creating at the moment when we can use this satellite_firewall role which enables all needed ports for capsule?