summaryrefslogtreecommitdiffstats
path: root/roles/openshift_master
diff options
context:
space:
mode:
authorDiego Castro <spinolacastro@gmail.com>2015-12-17 08:58:12 -0300
committerJason DeTiberus <jdetiber@redhat.com>2016-01-12 16:22:52 -0500
commit22eb2be9a1131279f1057912c36eba9591450dac (patch)
treedf5a94f65be3aea062f9eb4657ea09d2a2573465 /roles/openshift_master
parent98e46eda537fae3a7547f8a1ab1337dd7229252e (diff)
downloadopenshift-22eb2be9a1131279f1057912c36eba9591450dac.tar.gz
openshift-22eb2be9a1131279f1057912c36eba9591450dac.tar.bz2
openshift-22eb2be9a1131279f1057912c36eba9591450dac.tar.xz
openshift-22eb2be9a1131279f1057912c36eba9591450dac.zip
Controllers_port and firewall rules
Diffstat (limited to 'roles/openshift_master')
-rw-r--r--roles/openshift_master/defaults/main.yml6
-rw-r--r--roles/openshift_master/tasks/main.yml2
2 files changed, 4 insertions, 4 deletions
diff --git a/roles/openshift_master/defaults/main.yml b/roles/openshift_master/defaults/main.yml
index 9766d01ae..1f74d851a 100644
--- a/roles/openshift_master/defaults/main.yml
+++ b/roles/openshift_master/defaults/main.yml
@@ -6,7 +6,9 @@ os_firewall_allow:
- service: etcd embedded
port: 4001/tcp
- service: api server https
- port: 8443/tcp
+ port: "{{ openshift.master.api_port }}/tcp"
+- service: api controllers https
+ port: "{{ openshift.master.controllers_port }}/tcp"
- service: dns tcp
port: 53/tcp
- service: dns udp
@@ -24,7 +26,5 @@ os_firewall_allow:
os_firewall_deny:
- service: api server http
port: 8080/tcp
-- service: former web console port
- port: 8444/tcp
- service: former etcd peer port
port: 7001/tcp
diff --git a/roles/openshift_master/tasks/main.yml b/roles/openshift_master/tasks/main.yml
index 61b416f93..d749bce8d 100644
--- a/roles/openshift_master/tasks/main.yml
+++ b/roles/openshift_master/tasks/main.yml
@@ -258,7 +258,7 @@
line: "{{ item.line }}"
with_items:
- regex: '^OPTIONS='
- line: "OPTIONS=--loglevel={{ openshift.master.debug_level }} --listen=https://0.0.0.0:8444"
+ line: "OPTIONS=--loglevel={{ openshift.master.debug_level }} --listen=https://{{ openshift.master.bind_addr }}:{{ openshift.master.controllers_port }}"
- regex: '^CONFIG_FILE='
line: "CONFIG_FILE={{ openshift_master_config_file }}"
when: openshift_master_ha | bool and openshift_master_cluster_method == "native"