Merge pull request #1187 from Security-Onion-Solutions/quickfix/heavyfw

heavynode firewall rules
2026-01-23 00:21:29 +01:00 · 2020-08-14 16:01:56 -04:00
parent eb6b2f6ca0 47faee48a6
commit 6b6f39edde
1 changed files with 12 additions and 4 deletions
--- a/salt/firewall/assigned_hostgroups.map.yaml
+++ b/salt/firewall/assigned_hostgroups.map.yaml
@@ -442,16 +442,24 @@ role:
    chain:
      DOCKER-USER:
        hostgroups:
-          self:
+          manager:
            portgroups:
-              - {{ portgroups.redis }}
-              - {{ portgroups.beats_5044 }}
-              - {{ portgroups.beats_5644 }}
+              - {{ portgroups.elasticsearch_node }}
+          dockernet:
+            portgroups:
+              - {{ portgroups.elasticsearch_node }}
+              - {{ portgroups.elasticsearch_rest }}
+          elasticsearch_rest:
+            portgroups:
+              - {{ portgroups.elasticsearch_rest }}
      INPUT:
        hostgroups:
          anywhere:
            portgroups:
              - {{ portgroups.ssh }}
+          dockernet:
+            portgroups:
+              - {{ portgroups.all }}
          localhost:
            portgroups:
              - {{ portgroups.all }}