10 năm trước cách đây · 85e6948fca
--- a/README.md
+++ b/README.md
@@ -23,7 +23,7 @@ Setup
 
				 
			
 
				 - Directory Structure:
			
 
				   - [cloud.rb](cloud.rb) - light wrapper around Ansible
			
 
				-  - [cluster.sh](cluster.sh) - easily create OpenShift 3 clusters
			
 
				+  - [bin/cluster](bin/cluster) - python script to easily create OpenShift 3 clusters
			
 
				   - [filter_plugins/](filter_plugins) - custom filters used to manipulate data in Ansible
			
 
				   - [inventory/](inventory) - houses Ansible dynamic inventory scripts
			
 
				   - [lib/](lib) - library components of cloud.rb
			
--- a/playbooks/gce/openshift-cluster/terminate.yml
+++ b/playbooks/gce/openshift-cluster/terminate.yml
@@ -5,11 +5,6 @@
 
				   vars_files:
			
 
				     - vars.yml
			
 
				 
			
 
				-  tasks:
			
 
				-    - debug: msg="Retrieve node names"
			
 
				-    - debug: msg="Retrieve master names"
			
 
				-    - debug: var=groups
			
 
				-
			
 
				 - include: ../openshift-node/terminate.yml
			
 
				   vars:
			
 
				     oo_host_group_exp: 'groups["tag_env-host-type-{{ cluster_id }}-openshift-node"]'
			
--- a/roles/os_firewall/tasks/firewall/iptables.yml
+++ b/roles/os_firewall/tasks/firewall/iptables.yml
@@ -41,6 +41,20 @@
 
				   changed_when: "'firewalld' in result.stdout"
			
 
				   when: pkg_check.rc == 0
			
 
				 
			
 
				+- name: Check for DOCKER chain
			
 
				+  shell: iptables -L |grep '^Chain DOCKER'
			
 
				+  ignore_errors: yes
			
 
				+  register: check_for_chain
			
 
				+
			
 
				+- name: Create DOCKER chain
			
 
				+  command: iptables -N DOCKER
			
 
				+  register: create_chain
			
 
				+  when: check_for_chain.rc != 0
			
 
				+
			
 
				+- name: Persist DOCKER chain
			
 
				+  command: service iptables save
			
 
				+  when: create_chain.rc == 0
			
 
				+
			
 
				 - name: Add iptables allow rules
			
 
				   os_firewall_manage_iptables:
			
 
				     name: "{{ item.service }}"