openstack
/
tripleo-image-elements
Code Issues Proposed changes

Merge "Adding iptable rules for swift-storage DIB element"

This commit is contained in:
Jenkins 2015-01-16 16:26:22 +00:00 committed by Gerrit Code Review
parent 5b23452f69 95d8827043
commit c4d8d884fc
1 changed files with 25 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
elements/swift-storage/os-refresh-config/configure.d/21-swift-storage-iptables Executable file
View File

@ -0,0 +1,25 @@
#!/bin/bash
set -eux
set -o pipefail
get_bind_port () {
# first argument is the config file path
bind_string=$(grep bind_port $1)
if [ "$bind_string" != "" ]; then
equals_index=$(expr index "$bind_string" "=")
port_number=${bind_string:$equals_index}
echo ${port_number/ /}
else
echo ""
fi
}
# Open ports for swift-storage servers
add-rule INPUT -p tcp --dport $(get_bind_port /etc/swift/object-server.conf) -j ACCEPT
add-rule INPUT -p tcp --dport $(get_bind_port /etc/swift/container-server.conf) -j ACCEPT
add-rule INPUT -p tcp --dport $(get_bind_port /etc/swift/account-server.conf) -j ACCEPT
# Swift performs rsync for clustering on port 873
add-rule INPUT -p tcp --dport 873 -j ACCEPT