feat: add firewall rules

- create classes for each class of in/out traffic
- use hier_include to add firewall rules to each role
This commit is contained in:
2024-11-10 12:47:35 +11:00
parent ce12303576
commit b9465cd78b
18 changed files with 133 additions and 15 deletions
+9
View File
@@ -37,3 +37,12 @@ profiles::consul::client::node_rules:
- resource: service
segment: puppetdbapi
disposition: write
hiera_include:
- firewall::rules::in::sshd
- firewall::rules::in::puppetdbapi
firewall::rules::in::exporters::ports:
- 9100
- 9558
- 9635