yatinkarel
318ec87c36
After migration to tripleo-ansible firewall role with [1], firwall rules for sshd were not applied correctly as value of heat param SshFirewallAllowAll was not being honored. This patch fixes it by using conditions properly. Issue was not hit in CI in CentOS7 jobs as rule to allow access to port 22 is done while creating nodepool images with nodepool-base element. Issue got visible in rhel8 jobs(rhel8 nodepool images don't have nodepool-base element applied due to [3]) after [2] was merged which fixed apply of DROP rules. [1] https://review.opendev.org/#/c/677237/ [2] https://review.opendev.org/#/c/699692/ [3] https://softwarefactory-project.io/r/#/c/15863/ Closes-Bug: #1857463 Change-Id: Ifd5db368d63e89150c5c46877cd20e1e4a65a08c |
||
---|---|---|
.. | ||
sshd-baremetal-puppet.yaml |