Add EG firewall config

2025-12-08 02:02:50 +01:00 · 2021-10-13 21:37:59 +00:00
parent f9001654bb
commit a9b250c0f4
3 changed files with 17 additions and 1 deletions
--- a/files/firewall/hostgroups.local.yaml
+++ b/files/firewall/hostgroups.local.yaml
@@ -16,6 +16,10 @@ firewall:
      ips:
        delete:
        insert:
    endgame:
      ips:
        delete:
        insert:
    fleet:
      ips:
        delete:
--- a/salt/firewall/assigned_hostgroups.map.yaml
+++ b/salt/firewall/assigned_hostgroups.map.yaml
@@ -162,6 +162,9 @@ role:
          elasticsearch_rest:
            portgroups:
              - {{ portgroups.elasticsearch_rest }}
          endgame:
            portgroups:
              - {{ portgroups.endgame }}
          osquery_endpoint:
            portgroups:
              - {{ portgroups.fleet_api }}
@@ -248,6 +251,9 @@ role:
          elasticsearch_rest:
            portgroups:
              - {{ portgroups.elasticsearch_rest }}
          endgame:
            portgroups:
              - {{ portgroups.endgame }}
          osquery_endpoint:
            portgroups:
              - {{ portgroups.fleet_api }}
@@ -337,6 +343,9 @@ role:
          elasticsearch_rest:
            portgroups:
              - {{ portgroups.elasticsearch_rest }}
          endgame:
            portgroups:
              - {{ portgroups.endgame }}
          osquery_endpoint:
            portgroups:
              - {{ portgroups.fleet_api }}
@@ -594,4 +603,4 @@ role:
              - {{ portgroups.all }}
          minion:
            portgroups:
-              - {{ portgroups.salt_manager }}
+              - {{ portgroups.salt_manager }}
--- a/salt/firewall/portgroups.yaml
+++ b/salt/firewall/portgroups.yaml
@@ -39,6 +39,9 @@ firewall:
      elasticsearch_rest:
        tcp:
          - 9200
      endgame:
        tcp:
          - 3765
      fleet_api:
        tcp:
          - 8090