From 00a4b7ae3042ed06b22e5aca79953a4b4b5f89fb Mon Sep 17 00:00:00 2001
From: "James E. Blair" <jeblair@redhat.com>
Date: Thu, 6 Sep 2018 08:50:45 -0700
Subject: [PATCH] Allow ns servers to connect to adns

These firewall rules were missed in the conversion from puppet
to ansible.

Change-Id: I38c348542a568dc6c1a175116753d16e02e7e2dc
---
 playbooks/group_vars/adns.yaml | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 playbooks/group_vars/adns.yaml

diff --git a/playbooks/group_vars/adns.yaml b/playbooks/group_vars/adns.yaml
new file mode 100644
index 0000000000..9af283dc78
--- /dev/null
+++ b/playbooks/group_vars/adns.yaml
@@ -0,0 +1,7 @@
+iptables_extra_allowed_hosts:
+  - protocol: tcp
+    port: 53
+    hostname: ns1.openstack.org
+  - protocol: tcp
+    port: 53
+    hostname: ns2.openstack.org