From 93bbfb093622dc7ec0d0517a2ee37eb15ace4594 Mon Sep 17 00:00:00 2001 From: Kevin Fenzi Date: Sun, 7 Jun 2020 10:07:09 -0700 Subject: [PATCH] base / iptables: just allow port 5000 for registries Signed-off-by: Kevin Fenzi --- inventory/group_vars/oci_registry | 5 +---- inventory/group_vars/oci_registry_stg | 4 +--- 2 files changed, 2 insertions(+), 7 deletions(-) diff --git a/inventory/group_vars/oci_registry b/inventory/group_vars/oci_registry index e73da28f35..0c04b36db3 100644 --- a/inventory/group_vars/oci_registry +++ b/inventory/group_vars/oci_registry @@ -4,9 +4,6 @@ fas_client_groups: sysadmin-releng sudoers: "{{ private }}/files/sudo/00releng-sudoers" -proxy_tcp_ports: [ - 5000, - ] +tcp_ports: [ 5000 ] nfs_mount_opts: "rw,hard,bg,intr,noatime,nodev,nosuid,sec=sys,nfsvers=3" - diff --git a/inventory/group_vars/oci_registry_stg b/inventory/group_vars/oci_registry_stg index 15c73341eb..3e906fdf0c 100644 --- a/inventory/group_vars/oci_registry_stg +++ b/inventory/group_vars/oci_registry_stg @@ -3,9 +3,7 @@ fas_client_groups: sysadmin-releng,fi-apprentice,sysadmin-veteran sudoers: "{{ private }}/files/sudo/00releng-sudoers" -proxy_tcp_ports: [ - 5000, - ] +tcp_ports: [ 5000 ] nfs_mount_opts: "rw,hard,bg,intr,noatime,nodev,nosuid,sec=sys,nfsvers=3"