foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add node_exporter to all hosts

Browse source
This commit is contained in:
Timo Makinen 2023-08-20 14:33:39 +00:00
parent 5ec34f54c8
commit 946c7d0772
28 changed files with 30 additions and 24 deletions
Download patch file Download diff file Expand all files Collapse all files

4
roles/pf/files/pf.conf.gw_fsol
View file

@ -30,9 +30,9 @@ pass quick inet6 proto icmp6
antispoof for lo0
antispoof for vio0
# admin connection and munin (internal)
# admin connection and node_exporter (internal)
pass in quick on $int_if proto tcp from $int_net to self port ssh keep state (no-sync)
pass in quick on $int_if proto tcp from $int_net to self port 4949 keep state (no-sync)
pass in quick on $int_if proto tcp from $int_net to self port 9100 keep state (no-sync)
# internal network
block in quick from any to self

4
roles/pf/files/pf.conf.gw_home
View file

@ -45,8 +45,8 @@ pass in quick on $ext_if proto tcp from 37.35.86.64/29 to self port ssh
pass in quick on $ext_if proto tcp from 37.16.96.144/28 to self port ssh
pass in quick on $ext_if proto tcp from 81.175.155.142/32 to self port ssh
# munin from internal network
pass in quick on $int_if proto tcp from $int_net to self port 4949
# node_exporter from internal network
pass in quick on $int_if proto tcp from $int_net to self port 9100
# allow dns queries from internal net
pass in quick on $int_if proto { tcp, udp } from $int_net to self port domain