Commit 4183c089 authored by Goh Choon Ming's avatar Goh Choon Ming

enable firewall by default and add more ip addresses to whitelist

parent 9a9c3836
......@@ -22,7 +22,7 @@
# Enable firewall rules
# Default value: false
'opstheater::manage_firewall': false
'opstheater::manage_firewall': true
# Purge unmanaged firewall rules
# Default value: true
......@@ -41,6 +41,9 @@
- "%{hiera('opstheater::elasticsearch::ipaddress')}"
- "%{hiera('opstheater::gitlab::ipaddress')}"
- "%{hiera('opstheater::foreman::ipaddress')}"
- "%{hiera('opstheater::mattermost::ipaddress')}"
- "%{hiera('opstheater::kibana::ipaddress')}"
- "%{hiera('opstheater::puppet::ipaddress')}"
# IP address for VPN or internal network to access opstheater dashboards
# Default value: 0.0.0.0
......@@ -70,7 +73,8 @@
##########################
'opstheater::foreman::fqdn': "master.%{hiera('opstheater::domain')}"
'opstheater::foreman::url': "%{hiera('opstheater::http_mode')}://%{hiera('opstheater::foreman::fqdn')}"
'opstheater::foreman::ipaddress': '10.20.1.10'
'opstheater::foreman::ipaddress': "%{hiera('opstheater::puppet::ipaddress')}"
'opstheater::puppet::ipaddress': '10.20.1.10'
##########################
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment