diff options
Diffstat (limited to 'ci')
| -rw-r--r-- | ci/PR_revision.log | 2 | ||||
| -rwxr-xr-x | ci/util.sh | 19 |
2 files changed, 19 insertions, 2 deletions
diff --git a/ci/PR_revision.log b/ci/PR_revision.log index 5ff84dfc..92692e59 100644 --- a/ci/PR_revision.log +++ b/ci/PR_revision.log @@ -22,3 +22,5 @@ 52,Add notifier topic to ceilometer 53,Add numa to controller hiera hierarchy 54,fix network mtu +56,fixes tacker config for heat_uri +57,Remove trailing newline from dpdk pci address
\ No newline at end of file @@ -91,13 +91,28 @@ parse_cmdline() { ;; mock-detached) if [ "$2" == "on" ]; then - echo "Blocking output http and https traffic" + echo "Ensuring we can talk to gerrit.opnfv.org" + iptables -A OUTPUT -p tcp -d gerrit.opnfv.org --dport 443 -j ACCEPT + echo "Blocking output http (80) traffic" iptables -A OUTPUT -p tcp --dport 80 -j REJECT + iptables -A FORWARD -p tcp --dport 80 -j REJECT + echo "Blocking output https (443) traffic" iptables -A OUTPUT -p tcp --dport 443 -j REJECT + iptables -A FORWARD -p tcp --dport 443 -j REJECT + echo "Blocking output dns (53) traffic" + iptables -A FORWARD -p tcp --dport 53 -j REJECT elif [ "$2" == "off" ]; then - echo "Allowing output http and https traffic" + echo "Cleaning gerrit.opnfv.org specific rule" + iptables -D OUTPUT -p tcp -d gerrit.opnfv.org --dport 443 -j ACCEPT + echo "Allowing output http (80) traffic" iptables -D OUTPUT -p tcp --dport 80 -j REJECT + iptables -D FORWARD -p tcp --dport 80 -j REJECT + echo "Allowing output https (443) traffic" iptables -D OUTPUT -p tcp --dport 443 -j REJECT + iptables -D FORWARD -p tcp --dport 443 -j REJECT + echo "Allowing output dns (53) traffic" + iptables -D OUTPUT -p tcp --dport 53 -j REJECT + iptables -D FORWARD -p tcp --dport 53 -j REJECT else display_usage fi |