library/roles/iptables/templates/iptables-rules.v4.j2: Firewall rules for prometheus.

This commit is contained in:
Andrea Dell'Amico 2018-02-07 16:52:55 +01:00
parent 3df5f52805
commit 7f46f6f88e
1 changed files with 10 additions and 0 deletions

View File

@ -186,6 +186,16 @@
-A INPUT -m pkttype --pkt-type multicast -d {{ orientdb_hazelcast_multicast_group }} -j ACCEPT -A INPUT -m pkttype --pkt-type multicast -d {{ orientdb_hazelcast_multicast_group }} -j ACCEPT
-A INPUT -m state --state NEW -p tcp -m tcp --dport {{ orientdb_hazelcast_multicast_port }} -j ACCEPT -A INPUT -m state --state NEW -p tcp -m tcp --dport {{ orientdb_hazelcast_multicast_port }} -j ACCEPT
{% endif %} {% endif %}
# Prometheus exporters
{% if prometheus_enabled is defined and prometheus_enabled %}
{% if prometheus_servers_ip is defined %}
{% for ip in prometheus_servers_ip %}
-A INPUT -m state --state NEW -s {{ ip }} -p tcp -m tcp --dport 9100:9300 -j ACCEPT
{% endfor %}
{% else %}
-A INPUT -m state --state NEW -p tcp -m tcp --dport 9100:9300 -j ACCEPT
{% endif %}
{% endif %}
# Ganglia # Ganglia
{% if ganglia_enabled is defined and ganglia_enabled %} {% if ganglia_enabled is defined and ganglia_enabled %}
{% if ganglia_gmond_cluster_port is defined %} {% if ganglia_gmond_cluster_port is defined %}