diff options
author | Dmitry Tantsur <divius.inside@gmail.com> | 2016-08-17 17:12:26 +0200 |
---|---|---|
committer | Dmitry Tantsur <divius.inside@gmail.com> | 2016-08-25 13:25:54 +0200 |
commit | fc614ec1a3a6d10d75af46cd7915fbc0e45ffcc3 (patch) | |
tree | 1fefbf71a240c67b3f431cc49fbe84484e152e72 /puppet/services/ironic-api.yaml | |
parent | 319c42475c3c8b611bf685ca0aff4e9b79d0b570 (diff) |
Ironic: add missing haproxy and firewall configuration
Make sure Ironic API listens on a different IP than HAProxy.
Also open firewall ports for Ironic API and TFTP.
Change-Id: I9d843e76adcdb1085fd1e9fb7408a2387909382b
Diffstat (limited to 'puppet/services/ironic-api.yaml')
-rw-r--r-- | puppet/services/ironic-api.yaml | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/puppet/services/ironic-api.yaml b/puppet/services/ironic-api.yaml index 6b494256..d0516e1b 100644 --- a/puppet/services/ironic-api.yaml +++ b/puppet/services/ironic-api.yaml @@ -50,6 +50,7 @@ outputs: ironic::api::authtoken::username: 'ironic' ironic::api::authtoken::auth_uri: {get_param: [EndpointMap, KeystoneInternal, uri] } ironic::api::authtoken::auth_url: {get_param: [EndpointMap, KeystoneAdmin, uri_no_suffix]} + ironic::api::host_ip: {get_input: ironic_api_network} ironic::api::port: {get_param: [EndpointMap, IronicInternal, port]} # This is used to build links in responses ironic::api::public_endpoint: {get_param: [EndpointMap, IronicPublic, uri_no_suffix]} @@ -59,5 +60,10 @@ outputs: ironic::keystone::auth::auth_name: 'ironic' ironic::keystone::auth::password: {get_param: IronicPassword } ironic::keystone::auth::tenant: 'service' + tripleo.ironic_api.firewall_rules: + '133 ironic api': + dport: + - 6385 + - 13385 step_config: | include ::tripleo::profile::base::ironic::api |