jriou/ansible-pilote
1
0
Fork 0
Code Issues Pull requests Activity

feat(iptables): Allow mqtt exporter

Browse source 
Signed-off-by: Julien Riou <julien@riou.xyz>
This commit is contained in:
Julien Riou 2025-05-23 08:50:27 +02:00
parent 90b4f7cf0d
commit f63342bacc
Signed by: jriou
GPG key ID: 9A099EDA51316854
1 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
tasks/iptables.yml
View file

@ -34,6 +34,15 @@
jump: ACCEPT jump: ACCEPT
comment: allow node exporter from vpn comment: allow node exporter from vpn
- name: Allow mqtt exporter from VPN
ansible.builtin.iptables:
chain: INPUT
protocol: tcp
destination: "{{ openvpn_subnet }}"
destination_port: "9000"
jump: ACCEPT
comment: allow mqtt exporter from vpn
- name: Deny input connections by default - name: Deny input connections by default
ansible.builtin.iptables: ansible.builtin.iptables:
chain: INPUT chain: INPUT