roles/contiv/tasks/netplugin_firewalld.yml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34

---
- name: Netplugin Firewalld | Open Netplugin port
  firewalld:
    port: "{{ netplugin_port }}/tcp"
    permanent: false
    state: enabled
  # in case this is also a node where firewalld turned off
  ignore_errors: yes

- name: Netplugin Firewalld | Save Netplugin port
  firewalld:
    port: "{{ netplugin_port }}/tcp"
    permanent: true
    state: enabled
  # in case this is also a node where firewalld turned off
  ignore_errors: yes

- name: Netplugin Firewalld | Open vxlan port
  firewalld:
    port: "8472/udp"
    permanent: false
    state: enabled
  # in case this is also a node where firewalld turned off
  ignore_errors: yes
  when: contiv_encap_mode == "vxlan"

- name: Netplugin Firewalld | Save firewalld vxlan port for flanneld
  firewalld:
    port: "8472/udp"
    permanent: true
    state: enabled
  # in case this is also a node where firewalld turned off
  ignore_errors: yes
  when: contiv_encap_mode == "vxlan"