From aa43dea187a3bd4bcd443c1b65110e6e7d354b95 Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <puiterwijk@redhat.com>
Date: Thu, 18 Dec 2014 10:25:21 +0000
Subject: [PATCH] Allow hosted0{3,4} access to db-fas01 to authenticate TRAC

---
 inventory/host_vars/db-fas01.phx2.fedoraproject.org | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/inventory/host_vars/db-fas01.phx2.fedoraproject.org b/inventory/host_vars/db-fas01.phx2.fedoraproject.org
index d7c0c5e644..65b058bb83 100644
--- a/inventory/host_vars/db-fas01.phx2.fedoraproject.org
+++ b/inventory/host_vars/db-fas01.phx2.fedoraproject.org
@@ -25,9 +25,9 @@ num_cpus: 4
 fas_client_groups: sysadmin-dba,sysadmin-noc
 
 #
-# Only allow postgresql access from the frontend nodes.
+# Only allow postgresql access from the frontend nodes and hosted.
 #
-custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.5.126.25 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.26 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.30 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.240 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.241 --dport 5432 -j ACCEPT' , '-A INPUT -p tcp -m tcp -s 10.5.126.41 --dport 5432 -j ACCEPT']
+custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.5.126.25 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.26 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.30 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.240 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.241 --dport 5432 -j ACCEPT' , '-A INPUT -p tcp -m tcp -s 10.5.126.41 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 192.168.1.92 --dport 5432 -j ACCEPT', -A NPUT -p tcp -m tcp -s 192.168.1.102 --dport 5432 -j ACCEPT']
 
 #
 # Large updates pushes cause lots of db threads doing the tag moves, so up this from default.