From 3382864cee2a0f23868dcbaf099efb5c612ed199 Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Wed, 2 Mar 2016 16:27:30 +0000
Subject: [PATCH] Switch this over to two ip's instead of a hostname so
 iptables will start on boot.

---
 roles/base/templates/iptables/iptables.kojibuilder | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/roles/base/templates/iptables/iptables.kojibuilder b/roles/base/templates/iptables/iptables.kojibuilder
index 127dee1d0f..ee1462b3a0 100644
--- a/roles/base/templates/iptables/iptables.kojibuilder
+++ b/roles/base/templates/iptables/iptables.kojibuilder
@@ -73,9 +73,11 @@
 -A OUTPUT -m tcp -p tcp --dport 9418 -d 140.211.169.199 -j ACCEPT
 -A OUTPUT -m udp -p udp --dport 9418 -d 140.211.169.199 -j ACCEPT
 
-# admin.fedoraproject.org  for fas
--A OUTPUT -p tcp -m tcp -d admin.fedoraproject.org --dport 80 -j ACCEPT
--A OUTPUT -p tcp -m tcp -d admin.fedoraproject.org --dport 443 -j ACCEPT
+# admin.fedoraproject.org  for fas (proyx01 and proxy10)
+-A OUTPUT -p tcp -m tcp -d 10.5.126.51 --dport 80 -j ACCEPT
+-A OUTPUT -p tcp -m tcp -d 10.5.126.51 --dport 443 -j ACCEPT
+-A OUTPUT -p tcp -m tcp -d 10.5.126.52 --dport 80 -j ACCEPT
+-A OUTPUT -p tcp -m tcp -d 10.5.126.52 --dport 443 -j ACCEPT
 # for 2 facter auth
 -A OUTPUT -p tcp -m tcp -d 10.5.126.30 --dport 8443 -j ACCEPT
 -A OUTPUT -p tcp -m tcp -d 10.5.126.25 --dport 8443 -j ACCEPT