rm "legacy" prometheus firewall exported resource

Using 'jump' here was a breaking change anyway, so just get rid of it.
mlibrary · Nov 6, 2024 · e8d12f8 · e8d12f8
1 parent 9c7a3fe
commit e8d12f8
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 21 deletions.
diff --git a/manifests/profile/prometheus.pp b/manifests/profile/prometheus.pp
@@ -180,19 +180,6 @@
     }
   }
 
-  # Delete this once nothing is importing it. It's only here for the
-  # sake of hosts that aren't in production.
-  # Referenced in branches: fulcrum_demo, tdx_7298538
-  # ** intentionally retains puppetlabs/firewall v6.0.0 semantics **
-  @@firewall { "010 prometheus legacy node exporter ${::hostname}":
-    tag    => "${::datacenter}_prometheus_node_exporter",
-    proto  => 'tcp',
-    dport  => 9100,
-    source => $::ipaddress,
-    state  => 'NEW',
-    jump   => 'accept',
-  }
-
   case $facts["mlibrary_ip_addresses"] {
     Hash[String, Array[String]]: {
       $all_public_addresses = $facts["mlibrary_ip_addresses"]["public"]

diff --git a/spec/classes/profile/prometheus_spec.rb b/spec/classes/profile/prometheus_spec.rb
@@ -193,14 +193,8 @@
         end
       end
 
-      it 'exports a firewall so that nodes can open 9100' do
-        expect(exported_resources).to contain_firewall("010 prometheus legacy node exporter #{facts[:hostname]}")
-          .with_tag('mydatacenter_prometheus_node_exporter')
-          .with_proto('tcp')
-          .with_dport(9100)
-          .with_source(facts[:ipaddress])
-          .with_state('NEW')
-          .with_action('accept')
+      it 'does not export legacy port 9100 firewall resource' do
+        expect(exported_resources).not_to contain_firewall("010 prometheus legacy node exporter #{facts[:hostname]}")
       end
 
       context 'with no mlibrary_ip_addresses fact' do