Launchpad Mojo Specs

Merge ~cjwatson/launchpad-mojo-specs:codeimport-update-puller-secgroups into launchpad-mojo-specs:master

  1. Git
  2. lp:~cjwatson/launchpad-mojo-specs
  3. codeimport-update-puller-secgroups
  4. Merge into master
Proposed by Colin Watson
Status: Merged
Merged at revision: b7f91903c4369811def303969412342c44d156ed
Proposed branch: ~cjwatson/launchpad-mojo-specs:codeimport-update-puller-secgroups
Merge into: launchpad-mojo-specs:master
Diff against target: 48 lines (+17/-0)
3 files modified
lp-codeimport/configs/custom-secgroups-production.yaml (+3/-0)
lp-codeimport/configs/custom-secgroups-qastaging.yaml (+11/-0)
lp-codeimport/configs/custom-secgroups-staging.yaml (+3/-0)
Reviewer Review Type Date Requested Status
Guruprasad Approve
Review via email: mp+456108@code.launchpad.net

Commit message

codeimport: Update secgroups for new codehosting deployments

To post a comment you must log in.
Revision history for this message
Guruprasad (lgp171188) wrote :

LGTM 👍

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
diff --git a/lp-codeimport/configs/custom-secgroups-production.yaml b/lp-codeimport/configs/custom-secgroups-production.yaml
index 1a60ee0..796d4d0 100644
--- a/lp-codeimport/configs/custom-secgroups-production.yaml
+++ b/lp-codeimport/configs/custom-secgroups-production.yaml
@@ -28,3 +28,6 @@ rules:
28 # codehost-ps5.lp.internal / bazaar.launchpad.net28 # codehost-ps5.lp.internal / bazaar.launchpad.net
29 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "10.131.66.217/32"}29 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "10.131.66.217/32"}
30 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "185.125.189.232/32"}30 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "185.125.189.232/32"}
31 # prod-launchpad@is-bastion-ps5 (firewall rules apply finer-grained
32 # ACLs)
33 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "10.131.215.0/24"}
diff --git a/lp-codeimport/configs/custom-secgroups-qastaging.yaml b/lp-codeimport/configs/custom-secgroups-qastaging.yaml
index ad442af..c939bad 100644
--- a/lp-codeimport/configs/custom-secgroups-qastaging.yaml
+++ b/lp-codeimport/configs/custom-secgroups-qastaging.yaml
@@ -7,6 +7,10 @@ applications:
7 type: neutron7 type: neutron
8 rules:8 rules:
9 - rsync-logs9 - rsync-logs
10 lp-codeimport-storage:
11 type: neutron
12 rules:
13 - puller
10rules:14rules:
11 nagios-monitored:15 nagios-monitored:
12 # Allow monitoring from wendigo.16 # Allow monitoring from wendigo.
@@ -18,3 +22,10 @@ rules:
18 # Allow carob and launchpad-bastion-ps5 to fetch logs.22 # Allow carob and launchpad-bastion-ps5 to fetch logs.
19 - {"protocol": "tcp", "family": "IPv4", "port": 873, "cidr": "91.189.90.14/32"}23 - {"protocol": "tcp", "family": "IPv4", "port": 873, "cidr": "91.189.90.14/32"}
20 - {"protocol": "tcp", "family": "IPv4", "port": 873, "cidr": "10.131.10.100/32"}24 - {"protocol": "tcp", "family": "IPv4", "port": 873, "cidr": "10.131.10.100/32"}
25 puller:
26 # Bazaar imports aren't pushed directly to
27 # bazaar.qastaging.launchpad.net, but instead pulled from the code
28 # import storage unit.
29 # stg-launchpad@launchpad-bastion-ps5 (firewall rules apply
30 # finer-grained ACLs)
31 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "10.132.54.0/24"}
diff --git a/lp-codeimport/configs/custom-secgroups-staging.yaml b/lp-codeimport/configs/custom-secgroups-staging.yaml
index a5e149a..17118ea 100644
--- a/lp-codeimport/configs/custom-secgroups-staging.yaml
+++ b/lp-codeimport/configs/custom-secgroups-staging.yaml
@@ -28,3 +28,6 @@ rules:
28 # import storage unit.28 # import storage unit.
29 # tellurium.canonical.com29 # tellurium.canonical.com
30 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "91.189.94.53/32"}30 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "91.189.94.53/32"}
31 # stg-launchpad@launchpad-bastion-ps5 (firewall rules apply
32 # finer-grained ACLs)
33 - {"protocol": "tcp", "family": "IPv4", "port": 22, "cidr": "10.132.54.0/24"}

Subscribers

People subscribed via source and target branches