Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

pulibrary / princeton_ansible Public

Notifications You must be signed in to change notification settings
Fork 4
Star 11

Code
Issues 176
Pull requests 29
Actions
Projects
Wiki
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Wiki
Security
Insights

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

modify our firewall rules to have network names #5492

Open

6 of 12 tasks

kayiwa opened this issue Oct 30, 2024 · 1 comment

Open

6 of 12 tasks

modify our firewall rules to have network names #5492

kayiwa opened this issue Oct 30, 2024 · 1 comment

Assignees

Labels

Comments

Copy link

Member

kayiwa commented Oct 30, 2024 •

edited by VickieKarasic

Loading

What maintenance needs to be done?

Currently, our firewall rules use CIDR notation to define allowed IP address ranges. This makes it difficult to manage and update the rules, especially when IP addresses change or network segments are reorganized. To improve maintainability and readability, we need to update the firewall rules to use Ansible network variables instead of raw CIDR blocks.

Level of urgency

High
Moderate
Low

Why is this maintenance needed?

Action Items:

- Identify Firewall Rules: Review all existing firewall rules and identify those that use CIDR notation for network definitions.
- Define Ansible Network Variables:
- Create Ansible variables in the ufw_firewall to represent the relevant network segments.
- Use descriptive names for the variables (e.g., internal_network, libnet, vpn).
- Assign the corresponding CIDR blocks to these variables.
- Update Firewall Rules:
- Modify the firewall rules to replace CIDR blocks with the Ansible network variables.
- Ensure that the syntax for using variables within the firewall rules is correct

Acceptance criteria

swap out the rules in for abid-staging2.lib.princeton.edu
[ ]
[ ]

Implementation notes, if any

The text was updated successfully, but these errors were encountered:

All reactions

kayiwa added the maintenance label

kayiwa assigned VickieKarasic

VickieKarasic mentioned this issue

[prancible] I5492 add friendly names to ufw #5500

Draft

kayiwa mentioned this issue

Modify Ansible UFW Role to Use iptables-save Format #5520

Closed

Copy link

Member Author

kayiwa commented Nov 5, 2024 •

edited

Loading

depends on #5520

All reactions

Sorry, something went wrong.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Assignees

Labels

Projects

None yet

Milestone

No milestone

Development

No branches or pull requests

2 participants

Footer

© 2024 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.