Skip to content
This repository has been archived by the owner on Feb 2, 2023. It is now read-only.

ucla-oarc-mobile/chef-mwser-iptables

BranchesTags

Repository files navigation

mwser-iptables

mwser wrapper cookbook for managing iptables.

Supported Platforms

CentOS 6.x

Usage

This cookbook contains a number of recipes intended to abstract away all of the wonderful idiosyncrasies of iptables. Add them (order matters!!) to your node's run_list in order to set up iptables for this configuration.

mwser-iptables::sshd

Opens SSH access to known ucla subnet addresses that will be used to manage.

mwser-iptables::sshd-world

Opens SSH to the world, in the event that this is needed.

mwser-iptables::http_https

Opens 80/443 to the world. A typical need for our webapps.

mwser-iptables::elasticsearch

Opens 9200 to explicit IP addresses that should have access. Look at/modify this as needs change.

mwser-iptables::drop_input

Make sure this is not the only mwser-iptables recipe, or you'll close all access to the node. Also -- it drops any input not handled by the above recipes.

License and Authors

Author:: Steve Nolen ([email protected])

About

No description, website, or topics provided.

Resources

Readme

License

View license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages