status-im
/
infra-role-geth
mirror of https://github.com/status-im/infra-role-geth.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

firewall: add rules to new SERVICES chain 

https://github.com/status-im/infra-hq/issues/69
https://github.com/status-im/infra-role-bootstrap-linux/commit/92d8923b
https://github.com/status-im/infra-role-wireguard/commit/8394639e

Signed-off-by: Jakub Sokołowski <jakub@status.im>
This commit is contained in:
Jakub Sokołowski 2021-08-02 19:39:55 +02:00
parent 06966616e6
commit 5b91c936dc
No known key found for this signature in database
GPG Key ID: 4EF064D0E6D63020
1 changed files with 2 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
tasks/firewall.yml
View File

@ -2,9 +2,8 @@
- name: Geth | Enable ports on firewall - name: Geth | Enable ports on firewall
iptables: iptables:
comment: '{{ geth_cont_name }} {{ item }}' comment: '{{ geth_cont_name }} {{ item }}'
jump: ACCEPT jump: 'ACCEPT'
action: insert chain: 'SERVICES'
chain: DOCKER-USER
source: '0.0.0.0/0' source: '0.0.0.0/0'
protocol: '{{ item }}' protocol: '{{ item }}'
destination_port: '{{ geth_port | string }}' destination_port: '{{ geth_port | string }}'