Don't use lokkit to open ports in the firewall
This commit is contained in:
Aurélien Bompard
parent
fd0501610d
commit
2fdda6ad96
1 changed files with 2 additions and 9 deletions
|
|
@ -21,6 +21,8 @@
|
||||||
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
||||||
vars:
|
vars:
|
||||||
- mailman_vardir: /srv/persist/mailman
|
- mailman_vardir: /srv/persist/mailman
|
||||||
|
- tcp_ports: [22, 25, 80, 443]
|
||||||
|
- udp_ports: []
|
||||||
|
|
||||||
roles:
|
roles:
|
||||||
- sudo
|
- sudo
|
||||||
|
|
@ -50,15 +52,6 @@
|
||||||
get_url: url=https://repos.fedorapeople.org/repos/abompard/hyperkitty/hyperkitty.repo
|
get_url: url=https://repos.fedorapeople.org/repos/abompard/hyperkitty/hyperkitty.repo
|
||||||
dest=/etc/yum.repos.d/hyperkitty.repo mode=0444
|
dest=/etc/yum.repos.d/hyperkitty.repo mode=0444
|
||||||
|
|
||||||
# open up ports (22, 80, 443, 25)
|
|
||||||
- name: poke holes in the firewall
|
|
||||||
command: lokkit {{ item }}
|
|
||||||
with_items:
|
|
||||||
- --service=ssh
|
|
||||||
- --service=https
|
|
||||||
- --service=http
|
|
||||||
- --service=smtp
|
|
||||||
|
|
||||||
# Database
|
# Database
|
||||||
- name: initialize postgresql
|
- name: initialize postgresql
|
||||||
command: /usr/bin/postgresql-setup initdb
|
command: /usr/bin/postgresql-setup initdb
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue