diff --git a/files/firewall/hostgroups.local.yaml b/files/firewall/hostgroups.local.yaml index 794105627..d02d7c785 100644 --- a/files/firewall/hostgroups.local.yaml +++ b/files/firewall/hostgroups.local.yaml @@ -16,6 +16,10 @@ firewall: ips: delete: insert: + endgame: + ips: + delete: + insert: fleet: ips: delete: diff --git a/salt/firewall/assigned_hostgroups.map.yaml b/salt/firewall/assigned_hostgroups.map.yaml index d3fb79117..d5fca081f 100644 --- a/salt/firewall/assigned_hostgroups.map.yaml +++ b/salt/firewall/assigned_hostgroups.map.yaml @@ -162,6 +162,9 @@ role: elasticsearch_rest: portgroups: - {{ portgroups.elasticsearch_rest }} + endgame: + portgroups: + - {{ portgroups.endgame }} osquery_endpoint: portgroups: - {{ portgroups.fleet_api }} @@ -248,6 +251,9 @@ role: elasticsearch_rest: portgroups: - {{ portgroups.elasticsearch_rest }} + endgame: + portgroups: + - {{ portgroups.endgame }} osquery_endpoint: portgroups: - {{ portgroups.fleet_api }} @@ -337,6 +343,9 @@ role: elasticsearch_rest: portgroups: - {{ portgroups.elasticsearch_rest }} + endgame: + portgroups: + - {{ portgroups.endgame }} osquery_endpoint: portgroups: - {{ portgroups.fleet_api }} @@ -594,4 +603,4 @@ role: - {{ portgroups.all }} minion: portgroups: - - {{ portgroups.salt_manager }} \ No newline at end of file + - {{ portgroups.salt_manager }} diff --git a/salt/firewall/portgroups.yaml b/salt/firewall/portgroups.yaml index 1386267f5..d81d00d6a 100644 --- a/salt/firewall/portgroups.yaml +++ b/salt/firewall/portgroups.yaml @@ -39,6 +39,9 @@ firewall: elasticsearch_rest: tcp: - 9200 + endgame: + tcp: + - 3765 fleet_api: tcp: - 8090