From 75ead6489047e3153be6de5d9c78940deaa24400 Mon Sep 17 00:00:00 2001
From: Michael Chapman <woppin@gmail.com>
Date: Thu, 24 Jul 2014 10:50:30 +1000
Subject: [PATCH] Improved firewall support

Add support for new firewalling in openstacklib (soon
to be moved to openstack_extras) that manages SSH and
other basic rules, along with improved dashboard
firewall management.

Change-Id: Ib95254fd98e19111463e7b0c4c2e38d89f7b83da
---
 data/class_groups/firewall_compute.yaml    | 5 +++++
 data/class_groups/firewall_control.yaml    | 3 +++
 data/data_mappings/scenario/stacktira.yaml | 7 ++-----
 data/scenarios/stacktira.yaml              | 1 +
 4 files changed, 11 insertions(+), 5 deletions(-)
 create mode 100644 data/class_groups/firewall_compute.yaml

diff --git a/data/class_groups/firewall_compute.yaml b/data/class_groups/firewall_compute.yaml
new file mode 100644
index 0000000..c75f02e
--- /dev/null
+++ b/data/class_groups/firewall_compute.yaml
@@ -0,0 +1,5 @@
+classes:
+  - openstacklib::firewall
+  - openstacklib::firewall::base
+  - openstacklib::firewall::ssh
+  - openstacklib::firewall::compute
diff --git a/data/class_groups/firewall_control.yaml b/data/class_groups/firewall_control.yaml
index f325ddd..e909c52 100644
--- a/data/class_groups/firewall_control.yaml
+++ b/data/class_groups/firewall_control.yaml
@@ -1,5 +1,8 @@
 classes:
   - openstacklib::firewall
+  - openstacklib::firewall::base
+  - openstacklib::firewall::ssh
+  - openstacklib::firewall::memcached
   - openstacklib::firewall::nova
   - openstacklib::firewall::dhcp
   - openstacklib::firewall::keystone
diff --git a/data/data_mappings/scenario/stacktira.yaml b/data/data_mappings/scenario/stacktira.yaml
index 2e8aca6..947c8fe 100644
--- a/data/data_mappings/scenario/stacktira.yaml
+++ b/data/data_mappings/scenario/stacktira.yaml
@@ -54,10 +54,7 @@ domain_name:
 deploy_control_firewall_source:
   - openstacklib::firewall::edeploy::source
   - openstacklib::firewall::puppet::source
-
-deploy_control_firewall_source:
-  - openstacklib::firewall::edeploy::source
-  - openstacklib::firewall::puppet::source
+  - openstacklib::firewall::ssh::source
 
 public_control_firewall_source:
   - openstacklib::firewall::cinder::source
@@ -74,7 +71,7 @@ private_control_firewall_source:
   - galera::firewall::source
   - openstacklib::firewall::cinder::internal_source
   - openstacklib::firewall::ceilometer::internal_source
-  - openstacklib::firewall::dashboard::internal_source
+  - openstacklib::firewall::memcached::source
   - openstacklib::firewall::glance::internal_source
   - openstacklib::firewall::heat::internal_source
   - openstacklib::firewall::keystone::internal_source
diff --git a/data/scenarios/stacktira.yaml b/data/scenarios/stacktira.yaml
index 03412ac..23c895a 100644
--- a/data/scenarios/stacktira.yaml
+++ b/data/scenarios/stacktira.yaml
@@ -46,6 +46,7 @@ roles:
       - cinder_volume
       - ceilometer_compute
       - nova_compute_ml2
+      - firewall_compute
     classes:
       - openstacklib::repo
       - openstacklib::hosts