From 2fdda6ad96ca52f4281ce849dca385e41144c19a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Bompard?= <aurelien@bompard.org>
Date: Fri, 13 Feb 2015 15:24:40 +0000
Subject: [PATCH] Don't use lokkit to open ports in the firewall

---
 playbooks/hosts/lists-dev.cloud.fedoraproject.org.yml | 11 ++---------
 1 file changed, 2 insertions(+), 9 deletions(-)

diff --git a/playbooks/hosts/lists-dev.cloud.fedoraproject.org.yml b/playbooks/hosts/lists-dev.cloud.fedoraproject.org.yml
index 60565ed35e..0404984fe9 100644
--- a/playbooks/hosts/lists-dev.cloud.fedoraproject.org.yml
+++ b/playbooks/hosts/lists-dev.cloud.fedoraproject.org.yml
@@ -21,6 +21,8 @@
   - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
   vars:
   - mailman_vardir: /srv/persist/mailman
+   - tcp_ports: [22, 25, 80, 443]
+   - udp_ports: []
 
   roles:
   - sudo
@@ -50,15 +52,6 @@
     get_url: url=https://repos.fedorapeople.org/repos/abompard/hyperkitty/hyperkitty.repo
              dest=/etc/yum.repos.d/hyperkitty.repo mode=0444
 
-  # open up ports (22, 80, 443, 25)
-  - name: poke holes in the firewall
-    command: lokkit {{ item }}
-    with_items:
-    - --service=ssh
-    - --service=https
-    - --service=http
-    - --service=smtp
-
   # Database
   - name: initialize postgresql
     command: /usr/bin/postgresql-setup initdb