---
#
# Reference only. Check the iptables-rules.v4.j2 for the list of accepted variables
#
#pg_allowed_hosts:
#  - 146.48.123.17/32
#  - 146.48.122.110/32
#
#munin_server:
#  - 146.48.122.15
#  - 146.48.87.88
#http_port: 80
#http_allowed_hosts:
#  - 1.2.3.4/24
#https_port: 443
#https_allowed_hosts:
#  - 0.0.0.0/0
#
# Generic tcp and udp access
# iptables:
#   tcp_rules: True
#   tcp:
#     - { port: '8080', allowed_hosts: [ '{{ network.isti }}', '{{ network.nmis }}', '{{ network.eduroam }}' ] }
#     - { port: '80', allowed_hosts: [ '{{ network.isti }}', '{{ network.nmis }}', '{{ network.eduroam }}' ] }
#     - { port: '80' }
#   udp_rules: True
#   udp:
#     - { port: '123', allowed_hosts: [ '{{ network.isti }}', '{{ network.nmis }}', '{{ network.eduroam }}' ] }

# munin_server:
# - 146.48.122.15
# - 146.48.87.88

#nagios_monitoring_server_ip: 146.48.123.23
#mongodb:
#  start_server: 'yes'
#  tcp_port: 27017
#  allowed_hosts:
#    - 146.48.123.100/32

#iptables_default_policy: REJECT
iptables_default_policy: ACCEPT