Prevent haproxy to run iptables during docker-puppet configuration - apex-puppet-tripleo

diff options

author	Damien Ciabrini <dciabrin@redhat.com>	2017-07-20 11:48:22 -0400
committer	Alex Schultz <aschultz@redhat.com>	2017-07-27 18:59:30 +0000
commit	50f160a148b6a973891ffc6d0882f4c0d597336e (patch)
tree	187d7584789b669c94f8ecbd896618cef79409a4 /manifests/firewall.pp
parent	237e613a175fd975bf6679646eaf092ff6725015 (diff)

Prevent haproxy to run iptables during docker-puppet configuration

When docker-puppet runs module tripleo::haproxy to generate haproxy configuration file, and tripleo::firewall::manage_firewall is true, iptables is called to set up firewall rules for the proxied services and fails due to lack of NET_ADMIN capability. Make the generation of firewall rule configurable by exposing a new argument to the puppet module. That way, firewall management can be temporarily disabled when being run through docker-puppet. Change-Id: I2d6274d061039a9793ad162ed8e750bd87bf71e9 Partial-Bug: #1697921

Diffstat (limited to 'manifests/firewall.pp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: