Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

Allow fedoauth01.stg to talk to db-fas01.stg

Browse source
This commit is contained in:
Kevin Fenzi 2014-12-18 20:03:34 +00:00
parent 4b49668aa9
commit 6025f90dee
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
inventory/host_vars/db-fas01.stg.phx2.fedoraproject.org
View file

@ -25,9 +25,9 @@ num_cpus: 2
fas_client_groups: sysadmin-dba,sysadmin-noc
#
# Only allow postgresql access from the frontend node.
# Only allow postgresql access from the frontend node and fedoauth01.stg
#
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.5.126.86 --dport 5432 -j ACCEPT' ]
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.5.126.86 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.28 --dport 5432 -j ACCEPT' ]
#
# Large updates pushes cause lots of db threads doing the tag moves, so up this from default.