Skip to content

Commit

Permalink
prometheus firewall temp fixup
Browse files Browse the repository at this point in the history 
We were setting both action and jump on the same exported resource
because 'action' override doesn't clear the 'jump' default.
  • Loading branch information
@rrotter
rrotter committed Nov 6, 2024
1 parent 28d6069 commit f7aa994
Showing 1 changed file with 9 additions and 2 deletions.
11 changes: 9 additions & 2 deletions manifests/profile/prometheus.pp
View file
Original file line number Diff line number Diff line change
Expand Up @@ -243,17 +243,24 @@
tag => "${::datacenter}_prometheus_public_ipmi_exporter",
dport => 9290,
;
}

@@firewall {
default:
proto => 'tcp',
source => $address,
state => 'NEW',
action => 'accept',
;

"010 prometheus public node exporter firewall6 ${::hostname} ${address}":
tag => "firewall6-${::datacenter}_prometheus_public_node_exporter",
dport => 9100,
action => 'accept',
;

"010 prometheus public ipmi exporter firewall6 ${::hostname} ${address}":
tag => "firewall6-${::datacenter}_prometheus_public_ipmi_exporter",
dport => 9290,
action => 'accept',
;
}
}
Expand Down

0 comments on commit f7aa994

Please sign in to comment.