From 71074dce4fde6d77384376dcf15c98b8316871f6 Mon Sep 17 00:00:00 2001
From: Jason DeTiberus <jdetiber@redhat.com>
Date: Fri, 6 Mar 2015 17:38:19 -0500
Subject: start fixing os_firewall issues

- Fix missed references to old firewall scripts
- Fix variable name references that didn't get updated
---
 roles/openshift_master/defaults/main.yml | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'roles/openshift_master/defaults')

diff --git a/roles/openshift_master/defaults/main.yml b/roles/openshift_master/defaults/main.yml
index 10875da8e..0159afbb5 100644
--- a/roles/openshift_master/defaults/main.yml
+++ b/roles/openshift_master/defaults/main.yml
@@ -2,3 +2,15 @@
 openshift_master_manage_service_externally: false
 openshift_master_debug_level: "{{ openshift_debug_level | default(0) }}"
 openshift_node_ips: []
+os_firewall_allow:
+- service: etcd embedded
+  port: 4001/tcp
+- service: etcd peer
+  port: 7001/tcp
+- service: OpenShift api https
+  port: 8443/tcp
+- service: OpenShift web console https
+  port: 8444/tcp
+os_firewall_deny:
+- service: OpenShift api http
+  port: 8080/tcp
-- 
cgit v1.2.3