Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: be97433dd5
Branches Tags
okd
/
roles
/
nuage_node
/
tasks
/
iptables.yml

iptables.yml 784 B
History Raw

1234567891011121314151617 
  1. ---
    2. 

  2. - name: IPtables | Get iptables rules
    3. 

  3.   command: iptables -L --wait
    4. 

  4.   register: iptablesrules
    5. 

  5.   always_run: yes
    6. 

  6. 

  7. - name: Allow traffic from overlay to underlay
    8. 

  8.   command: /sbin/iptables --wait -I FORWARD 1 -s {{ hostvars[groups.oo_first_master.0].openshift.master.sdn_cluster_network_cidr }} -j ACCEPT -m comment --comment "nuage-overlay-underlay"
    9. 

  9.   when: "'nuage-overlay-underlay' not in iptablesrules.stdout"
    10. 

  10.   notify:
    11. 

  11.     - save iptable rules
    12. 

  12. 

  13. - name: Allow traffic from underlay to overlay
    14. 

  14.   command: /sbin/iptables --wait -I FORWARD 1 -d {{ hostvars[groups.oo_first_master.0].openshift.master.sdn_cluster_network_cidr }} -j ACCEPT -m comment --comment "nuage-underlay-overlay"
    15. 

  15.   when: "'nuage-underlay-overlay' not in iptablesrules.stdout"
    16. 

  16.   notify:
    17. 

  17.     - save iptable rules
    18.