randy/rgnet-wiki
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

comments, locations, and comment out vm1.iad

Browse source
This commit is contained in:
Randy Bush 2022-10-16 13:50:27 -07:00
parent 88505f7d26
commit 39aa1a741e
1 changed files with 9 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

12
pages/ganeti-port-80-filters.md
View file

@ -1,5 +1,6 @@
# Ganeti Port 80 Filters
## Westin
```
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 127.0.0.1 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 147.28.0.14 -j ACCEPT
@ -7,15 +8,20 @@ iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 147.28.0.15 -j ACCEP
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 147.28.0.16 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 147.28.0.29 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -j DROP
```
## Ashburn
```
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 127.0.0.1 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.150.8 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.150.4 -j ACCEPT
# vm1.iad has been decommissioned
# iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.150.4 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.150.10 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -j DROP
```
## Dallas
```
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 127.0.0.1 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.152.30 -j ACCEPT
iptables -A INPUT -i br-lan -p tcp --destination-port 80 -s 198.180.152.7 -j ACCEPT