openstack/tripleo-docs
Code Issues Proposed changes

Merge "Correct firewall configuration doc"

Browse Source
This commit is contained in:
Zuul 2022-09-15 09:01:10 +00:00 committed by Gerrit Code Review
commit e92287808d
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
deploy-guide/source/features/security_hardening.rst
View File

@ -148,7 +148,7 @@ deployment when needed. For example, for Zabbix monitoring system.
dport: 10050 dport: 10050
proto: tcp proto: tcp
source: 10.0.0.8 source: 10.0.0.8
action: accept jump: accept
Rules can also be used to restrict access. The number used at definition of a Rules can also be used to restrict access. The number used at definition of a
rule will determine where the nftables rule will be inserted. For example, rule will determine where the nftables rule will be inserted. For example,
@ -166,14 +166,14 @@ do.
- 25672 - 25672
proto: tcp proto: tcp
source: 10.0.0.0/24 source: 10.0.0.0/24
action: accept jump: accept
'099 drop other rabbit access': '099 drop other rabbit access':
dport: dport:
- 4369 - 4369
- 5672 - 5672
- 25672 - 25672
proto: tcp proto: tcp
action: drop jump: drop
In this example, 098 and 099 are arbitrarily numbers that are smaller than the In this example, 098 and 099 are arbitrarily numbers that are smaller than the
default rabbitmq rule number. To know the number of a rule, inspect the active default rabbitmq rule number. To know the number of a rule, inspect the active