dap-ps
/
infra-dapps
mirror of https://github.com/dap-ps/infra-dapps.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

add mongodb-firewall role for iptables rules 

Signed-off-by: Jakub Sokołowski <jakub@status.im>
This commit is contained in:
Jakub Sokołowski 2019-07-31 13:48:13 -04:00
parent aa5c854732
commit 08e02096c8
No known key found for this signature in database
GPG Key ID: 4EF064D0E6D63020
4 changed files with 18 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
ansible/roles/mongodb-firewall/README.md Normal file
View File

@ -0,0 +1,3 @@
# Description
This role simply open the TCP port in `iptables` based on value of `mongodb_net_port`.

2
ansible/roles/mongodb-firewall/defaults/main.yml Normal file
View File

@ -0,0 +1,2 @@
---
mongodb_net_port: 27017

3
ansible/roles/mongodb-firewall/handlers/main.yml Normal file
View File

@ -0,0 +1,3 @@
---
- name: Save iptables rules
shell: iptables-save > /etc/iptables/rules.v4

10
ansible/roles/mongodb-firewall/tasks/main.yml Normal file
View File

@ -0,0 +1,10 @@
---
- name: Enable MongoDB port
iptables:
comment: 'MongoDB'
jump: ACCEPT
source: '0.0.0.0/0'
protocol: 'tcp'
destination_port: '{{ mongodb_net_port }}'
notify:
- Save iptables rules