Use ufw from puppet sunet instead

2023-02-17 14:46:22 +01:00 · 2023-02-17 14:46:22 +01:00 · e013d5baa7
commit e013d5baa7
parent f94b66e3c1
2 changed files with 12 additions and 0 deletions
--- a/manifests/app_type.pp
+++ b/manifests/app_type.pp
@ -338,6 +338,10 @@ define sunetdrive::app_type (
      from => '0.0.0.0/0',
      port => 443,
    }
+    sunet::nftables::docker_expose { 'https':
+      from => ['any']
+      port => 443,
+    }
  }

 }
--- a/manifests/proxysql.pp
+++ b/manifests/proxysql.pp
@ -69,6 +69,14 @@ class sunetdrive::proxysql (
    from => $tug_office,
    port => 6080,
  }
+  sunet::nftables::docker_expose { 'stats_ports':
+    from => $tug_office,
+    port => 6080,
+  }
+  sunet::nftables::docker_expose { 'proxysql':
+    from => ['any'],
+    port => 6032,
+  }

  sunet::docker_compose { 'drive_proxysql_docker_compose':
    content          => template('sunetdrive/proxysql/docker-compose_proxysql.yml.erb'),