From d7fa58f05ccb583f21a031413f5d4ba2dc1d4f2e Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <patrick@puiterwijk.org>
Date: Fri, 29 Mar 2019 00:59:47 +0100
Subject: [PATCH] Allow nagios to proxy-only ports as well

Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
---
 roles/base/templates/iptables/iptables | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/roles/base/templates/iptables/iptables b/roles/base/templates/iptables/iptables
index 2f4271c2c6..6876658ad0 100644
--- a/roles/base/templates/iptables/iptables
+++ b/roles/base/templates/iptables/iptables
@@ -109,6 +109,8 @@
 -A INPUT -p tcp -m tcp --dport {{ port }} --src {{ hostvars[proxy]['ansible_tun0']['ipv4']['address'] }} -j ACCEPT
 {% endif %}
 {% endfor %}
+# nagios
+-A INPUT -p tcp -m tcp --dport {{ port }} --src {{ hostvars['noc01.phx2.fedoraproject.org']['ansible_eth0']['ipv4']['address'] }} -j ACCEPT
 {% endfor %}
 {% endif %}