jriou/ansible-pilote
1
0
Fork 0
Code Issues Pull requests Activity

feat(iptables): Allow node exporter

Browse source 
Node exporter is managed outside of this repository.

Signed-off-by: Julien Riou <julien@riou.xyz>
This commit is contained in:
Julien Riou 2025-05-16 15:27:20 +02:00
parent 97ab3931bb
commit 55ea541cbe
Signed by: jriou
GPG key ID: 9A099EDA51316854
1 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
tasks/iptables.yml
View file

@ -25,6 +25,15 @@
jump: ACCEPT jump: ACCEPT
comment: allow ping from the world comment: allow ping from the world
- name: Allow node exporter from VPN
ansible.builtin.iptables:
chain: INPUT
protocol: tcp
destination: "{{ openvpn_subnet }}"
destination_port: "9100"
jump: ACCEPT
comment: allow node exporter from vpn
- name: Deny input connections by default - name: Deny input connections by default
ansible.builtin.iptables: ansible.builtin.iptables:
chain: INPUT chain: INPUT