768ee0d856
This patch checks if nova is disabled in some plugins so we can run packstack with CONFIG_NOVA_INSTALL=n Added also an ALL option to the firewall template. Change-Id: I05a9bd55c89d4009e28307248d74624533d47240 Fixes: rhbz#987888 rhbz#1024564 rhbz#1026795
20 lines
468 B
Puppet
20 lines
468 B
Puppet
# Create firewall rules to allow only the hosts that need to connect
|
|
# to %(FIREWALL_SERVICE_NAME)s
|
|
|
|
$hosts = [ %(FIREWALL_ALLOWED)s ]
|
|
|
|
define add_allow_host {
|
|
$source = $title ? {
|
|
'ALL' => '0.0.0.0/0',
|
|
default => $title,
|
|
}
|
|
firewall { "001 %(FIREWALL_SERVICE_NAME)s incoming ${title}":
|
|
proto => 'tcp',
|
|
dport => [%(FIREWALL_PORTS)s],
|
|
action => 'accept',
|
|
source => $source,
|
|
}
|
|
}
|
|
|
|
add_allow_host {$hosts:}
|