start fixing os_firewall issues

- Fix missed references to old firewall scripts - Fix variable name references that didn't get updated
author: Jason DeTiberus <jdetiber@redhat.com> 2015-03-06 17:38:19 -0500
committer: Jason DeTiberus <jdetiber@redhat.com> 2015-03-06 17:44:55 -0500
commit: 71074dce4fde6d77384376dcf15c98b8316871f6 (patch)
tree: 285b31cf78950185af56c9afa25e6ef52370cc3a /roles/openshift_master/defaults/main.yml
parent: 77008d93e094ab284d869c4bb61dbb06941fa84f (diff)
download: openshift-71074dce4fde6d77384376dcf15c98b8316871f6.tar.gz
openshift-71074dce4fde6d77384376dcf15c98b8316871f6.tar.bz2
openshift-71074dce4fde6d77384376dcf15c98b8316871f6.tar.xz
openshift-71074dce4fde6d77384376dcf15c98b8316871f6.zip
1 files changed, 12 insertions, 0 deletions
diff --git a/roles/openshift_master/defaults/main.yml b/roles/openshift_master/defaults/main.yml
index 10875da8e..0159afbb5 100644
--- a/roles/openshift_master/defaults/main.yml
+++ b/roles/openshift_master/defaults/main.yml
@@ -2,3 +2,15 @@
 openshift_master_manage_service_externally: false
 openshift_master_debug_level: "{{ openshift_debug_level | default(0) }}"
 openshift_node_ips: []
+os_firewall_allow:
+- service: etcd embedded
+  port: 4001/tcp
+- service: etcd peer
+  port: 7001/tcp
+- service: OpenShift api https
+  port: 8443/tcp
+- service: OpenShift web console https
+  port: 8444/tcp
+os_firewall_deny:
+- service: OpenShift api http
+  port: 8080/tcp
author	Jason DeTiberus <jdetiber@redhat.com>	2015-03-06 17:38:19 -0500
committer	Jason DeTiberus <jdetiber@redhat.com>	2015-03-06 17:44:55 -0500
commit	71074dce4fde6d77384376dcf15c98b8316871f6 (patch)
tree	285b31cf78950185af56c9afa25e6ef52370cc3a /roles/openshift_master/defaults/main.yml
parent	77008d93e094ab284d869c4bb61dbb06941fa84f (diff)
download	openshift-71074dce4fde6d77384376dcf15c98b8316871f6.tar.gz openshift-71074dce4fde6d77384376dcf15c98b8316871f6.tar.bz2 openshift-71074dce4fde6d77384376dcf15c98b8316871f6.tar.xz openshift-71074dce4fde6d77384376dcf15c98b8316871f6.zip