From 93de42a3331332e7e2efd1ffcd18bc2992cb0303 Mon Sep 17 00:00:00 2001
From: Andrea Dell'Amico <adellam@sevenseas.org>
Date: Wed, 25 May 2016 15:55:51 +0200
Subject: [PATCH] d4science-ghn-cluster: new infra dev VM. liferay cluster.
 library/roles/iptables: snippet for the multicast part of tomcat clustering.

---
 iptables/defaults/main.yml              | 1 +
 iptables/templates/iptables-rules.v4.j2 | 7 +++++++
 2 files changed, 8 insertions(+)

diff --git a/iptables/defaults/main.yml b/iptables/defaults/main.yml
index fc4a82bd..9d499b3b 100644
--- a/iptables/defaults/main.yml
+++ b/iptables/defaults/main.yml
@@ -44,3 +44,4 @@ iptables_banned_default_policy: DROP
 ganglia_enabled: False
 nagios_enabled: False
 iptables_open_all_to_isti_nets: False
+tomcat_cluster_enabled: False
diff --git a/iptables/templates/iptables-rules.v4.j2 b/iptables/templates/iptables-rules.v4.j2
index 702cee01..ad6b7d66 100644
--- a/iptables/templates/iptables-rules.v4.j2
+++ b/iptables/templates/iptables-rules.v4.j2
@@ -173,6 +173,13 @@
 {% endif %}
 {% endif %}
 
+{% if tomcat_cluster_enabled %}
+# tomcat cluster
+-A INPUT -m pkttype --pkt-type multicast -d {{ tomcat_cluster_multicast_addr }} -j ACCEPT
+-A INPUT -m state --state NEW -p tcp -m tcp --dport {{ tomcat_cluster_multicast_port }} -j ACCEPT
+{% endif %}
+
+
 {% if ganglia_enabled is defined %}
 {% if ganglia_enabled %}
 {% if ganglia_gmond_cluster_port is defined %}