7e1baa120e
We'll add another task on the play to run on east when it's in prod, doing west now. Change-Id: I1bddb8f3e6a577487fbee5c4b5344047b0619d94
22 lines
774 B
YAML
22 lines
774 B
YAML
- name: Delete any previously default security group rules
|
|
shell: /usr/local/bin/openstack security group rule delete "{{ item }}"
|
|
environment:
|
|
OS_CLOUD: "{{ os_client_config_cloud }}"
|
|
with_lines: OS_CLOUD="{{ os_client_config_cloud }}" /usr/local/bin/openstack security group rule list -f value -c ID default
|
|
|
|
- name: Allow all IPv4 traffic on default security group
|
|
os_security_group_rule:
|
|
cloud: "{{ os_client_config_cloud }}"
|
|
security_group: default
|
|
direction: ingress
|
|
ethertype: IPv4
|
|
remote_ip_prefix: 0.0.0.0/0
|
|
|
|
- name: Allow all IPv6 traffic on default security group
|
|
os_security_group_rule:
|
|
cloud: "{{ os_client_config_cloud }}"
|
|
security_group: default
|
|
direction: ingress
|
|
ethertype: IPv6
|
|
remote_ip_prefix: ::0/0
|