Browse Source

production: assign hosts to their firewall groups

keep-around/fc3b9eed914bec9f9d51ca6966fac5b72e8d5e95
singuliere 3 years ago
parent
commit
01f2aab53d
No known key found for this signature in database GPG Key ID: 900857755EF189C2
  1. 56
      inventories/common/firewall.yml
  2. 7
      inventories/dachary/firewall.yml
  3. 9
      inventories/fpoulain-dachary/firewall.yml

56
inventories/common/firewall.yml

@ -0,0 +1,56 @@
# ssh
firewall_ssh_server_group:
hosts:
bind-host:
postfix-host:
icinga-host:
weblate-host:
gitlab-host:
runner-host:
packages-host:
website-host:
chat-host:
# postfix
firewall_postfix_server_group:
hosts:
postfix-host:
firewall_postfix_client_group:
children:
firewall_ssh_server_group:
# DNS
firewall_dns_server_group:
hosts:
bind-host:
# icinga2
firewall_icinga2_server_group:
hosts:
icinga-host:
firewall_icinga2_client_group:
children:
firewall_ssh_server_group:
# web
firewall_web_server_group:
hosts:
chat-host:
forum-host:
gitlab-host:
icinga-host:
packages-host:
postfix-host: # not a web host but has a web site for the purpose of obtaining letsencrypt certificates
weblate-host:
website-host:
# icmp
firewall_icmp_server_group:
children:
firewall_ssh_server_group:
firewall_icmp_client_group:
hosts:
icinga-host:

7
inventories/dachary/firewall.yml

@ -0,0 +1,7 @@
firewall_ssh_server_group:
hosts:
jmm-host:
firewall_web_server_group:
hosts:
jmm-host:

9
inventories/fpoulain-dachary/firewall.yml

@ -0,0 +1,9 @@
firewall_ssh_server_group:
hosts:
wereport-host:
cloud-host:
firewall_web_server_group:
hosts:
wereport-host:
cloud-host:
Loading…
Cancel
Save