From a0c18f9c25e2ab63fdbc4990638d6c0685077447 Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Thu, 18 May 2017 16:39:04 +0000
Subject: [PATCH] Add iptables rule for nrpe monitoring

---
 playbooks/groups/os-cluster.yml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/playbooks/groups/os-cluster.yml b/playbooks/groups/os-cluster.yml
index 312f938f0a..6872173a62 100644
--- a/playbooks/groups/os-cluster.yml
+++ b/playbooks/groups/os-cluster.yml
@@ -115,3 +115,16 @@
         tags: ['openshift-cluster','ansible-ansible-openshift-ansible']
     }
 
+- name: Post-Install setup
+  hosts: os-stg:os
+  tags:
+    - os-post-install
+  vars_files:
+    - /srv/web/infra/ansible/vars/global.yml
+    - /srv/private/ansible/vars.yml
+    - /srv/private/ansible/files/openstack/passwords.yml
+    - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
+
+  tasks:
+    - name: enable nrpe for monitoring (noc01)
+      iptables: action=insert chain=INPUT destination_port=5666 protocol=tcp source=10.5.126.41 state=present jump=ACCEPT