status-im
/
infra-nimbus
mirror of https://github.com/status-im/infra-nimbus.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
infra-nimbus/ansible/roles/redirect-ports
History
Miran 2b079f1774
fix various typos in comments and roles 		2022-07-04 15:07:55 +02:00
..
defaults nimbus.mainnet: add two public Beacon API endpoints 2021-10-04 13:42:33 +02:00
handlers nimbus.mainnet: add two public Beacon API endpoints 2021-10-04 13:42:33 +02:00
tasks fix various typos in comments and roles 2022-07-04 15:07:55 +02:00
README.md nimbus.mainnet: add two public Beacon API endpoints 2021-10-04 13:42:33 +02:00

README.md

Description

This role configures port redirects using iptables.

Configuration

You can redirect multiple ports:

redirect_ports:
  - { src:  80, dst: 8080, comment: 'XYZ Service HTTP' }
  - { src: 443, dst: 8443, comment: 'XYZ Service HTTPS' }

All configured ports are opened in the SERVICES chain and redirected using PREROUTING chain in the nat table:

 > sudo iptables -L PREROUTING -t nat   
Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         
REDIRECT   tcp  --  anywhere             anywhere             tcp dpt:http  /* XYZ Service HTTP */ redir ports 8080
REDIRECT   tcp  --  anywhere             anywhere             tcp dpt:https /* XYZ Service HTTPS */ redir ports 8443