tripleo-heat-templates

History

Lars Kellogg-Stedman a433e05e66 implement default ssh-from-ctlplane rule via hiera With the accompanying change in puppet-tripleo, this removes the hardcoded firewall rule allowing ssh traffic in tripleo::firewall::pre and replaces it with a configuration in tripleo-firewall.yaml that allows only ssh access from the undercloud's controlplane network address. This allows operators to define more granular ssh firewall rules via tripleo::firewall::firewall_rules. Needed-By: I14b540e6564c5b7c5d54b4f1fd5368b000744135 Change-Id: I89cff59947dda3f51482486c41a3d67c4aa36a3e	2018-12-19 07:59:28 -07:00
..
tripleo-firewall-baremetal-puppet.yaml	implement default ssh-from-ctlplane rule via hiera	2018-12-19 07:59:28 -07:00

Lars Kellogg-Stedman a433e05e66 implement default ssh-from-ctlplane rule via hiera

With the accompanying change in puppet-tripleo, this removes the
hardcoded firewall rule allowing ssh traffic in tripleo::firewall::pre
and replaces it with a configuration in tripleo-firewall.yaml that
allows only ssh access from the undercloud's controlplane network
address. This allows operators to define more granular ssh
firewall rules via tripleo::firewall::firewall_rules.

Needed-By: I14b540e6564c5b7c5d54b4f1fd5368b000744135
Change-Id: I89cff59947dda3f51482486c41a3d67c4aa36a3e

2018-12-19 07:59:28 -07:00

tripleo-firewall-baremetal-puppet.yaml

implement default ssh-from-ctlplane rule via hiera

2018-12-19 07:59:28 -07:00