prep cloud-noc01 to be a ntp server for the rest of the cloud instances

2018-09-18 22:03:58 +00:00 · 2018-09-18 22:03:58 +00:00 · dde8f1849d
commit dde8f1849d
parent a3ceec6541
2 changed files with 4 additions and 1 deletions
--- a/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org
+++ b/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org
@ -23,5 +23,6 @@ custom_rules: [ '-A INPUT -i br0 -p tcp -m tcp -s 209.132.184.0/24  --dport 67 -
                '-A INPUT -i br1 -p tcp -m tcp -s 172.23.0.0/23  --dport 69 -j ACCEPT',
                '-A INPUT -i br1 -p udp -m udp -s 172.23.0.0/23  --dport 67 -j ACCEPT',
                '-A INPUT -i br1 -p udp -m udp -s 172.23.0.0/23  --dport 68 -j ACCEPT',
-                '-A INPUT -i br1 -p udp -m udp -s 172.23.0.0/23  --dport 69 -j ACCEPT' ]
+                '-A INPUT -i br1 -p udp -m udp -s 172.23.0.0/23  --dport 69 -j ACCEPT',
+                '-A INPUT -i br0 -p udp -m upd -s 209.132.184.0/24 --dport 123 -j ACCEPT' ]

--- a/roles/ntp/templates/ntp.conf.j2
+++ b/roles/ntp/templates/ntp.conf.j2
@ -14,6 +14,8 @@ restrict -6 ::1
 #
 server 10.5.126.12
 server 10.5.126.11
+{% elif datacenter == 'cloud' and not inventory_hostanem.startswith('cloud-noc01') %}
+server cloud-noc01.cloud.fedoraproject.org
 {% else %}
 server 1.rhel.pool.ntp.org
 server 2.rhel.pool.ntp.org