summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorBen Nemec <bnemec@redhat.com>2016-06-15 17:25:18 -0500
committerBen Nemec <bnemec@redhat.com>2016-06-20 13:00:56 -0500
commita4c9e1b9f64544e5be971481e2df205dc6f7634b (patch)
treeec0a7aa00bd17b0d42aa9ca60283291f34167596
parentb2eba85979039ce732d294a90d1eaaee8cfeb8f8 (diff)
Allow pacemaker ports in firewall
This is required to allow ha deployments with ManageFirewall: True These are the ports documented in [1]. 1: https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html-single/Configuring_the_Red_Hat_High_Availability_Add-On_with_Pacemaker/index.html#s1-firewalls-HAAR Change-Id: I446cc0ed863df15e28fa8ec1f5e2a06c5c03af8c Closes-Bug: 1594470
-rw-r--r--puppet/hieradata/controller.yaml9
1 files changed, 9 insertions, 0 deletions
diff --git a/puppet/hieradata/controller.yaml b/puppet/hieradata/controller.yaml
index 7581a52c..76335943 100644
--- a/puppet/hieradata/controller.yaml
+++ b/puppet/hieradata/controller.yaml
@@ -297,3 +297,12 @@ tripleo::firewall::firewall_rules:
dport:
- 8041
- 13041
+ '130 pacemaker tcp':
+ proto: 'tcp'
+ dport:
+ - 2224
+ - 3121
+ - 21064
+ '131 pacemaker udp':
+ proto: 'udp'
+ dport: 5405