Add EG firewall config

2025-12-06 09:12:45 +01:00 · 2021-10-13 21:37:59 +00:00
parent f9001654bb
commit a9b250c0f4
3 changed files with 17 additions and 1 deletions
--- a/files/firewall/hostgroups.local.yaml
+++ b/files/firewall/hostgroups.local.yaml
@@ -16,6 +16,10 @@ firewall:
      ips:
        delete:
        insert:
+    endgame:
+      ips:
+        delete:
+        insert:
    fleet:
      ips:
        delete:
--- a/salt/firewall/assigned_hostgroups.map.yaml
+++ b/salt/firewall/assigned_hostgroups.map.yaml
@@ -162,6 +162,9 @@ role:
          elasticsearch_rest:
            portgroups:
              - {{ portgroups.elasticsearch_rest }}
+          endgame:
+            portgroups:
+              - {{ portgroups.endgame }}
          osquery_endpoint:
            portgroups:
              - {{ portgroups.fleet_api }}
@@ -248,6 +251,9 @@ role:
          elasticsearch_rest:
            portgroups:
              - {{ portgroups.elasticsearch_rest }}
+          endgame:
+            portgroups:
+              - {{ portgroups.endgame }}
          osquery_endpoint:
            portgroups:
              - {{ portgroups.fleet_api }}
@@ -337,6 +343,9 @@ role:
          elasticsearch_rest:
            portgroups:
              - {{ portgroups.elasticsearch_rest }}
+          endgame:
+            portgroups:
+              - {{ portgroups.endgame }}
          osquery_endpoint:
            portgroups:
              - {{ portgroups.fleet_api }}
@@ -594,4 +603,4 @@ role:
              - {{ portgroups.all }}
          minion:
            portgroups:
-              - {{ portgroups.salt_manager }}
+              - {{ portgroups.salt_manager }}
--- a/salt/firewall/portgroups.yaml
+++ b/salt/firewall/portgroups.yaml
@@ -39,6 +39,9 @@ firewall:
      elasticsearch_rest:
        tcp:
          - 9200
+      endgame:
+        tcp:
+          - 3765
      fleet_api:
        tcp:
          - 8090