fix(hs): Persist
This commit is contained in:
@@ -135,6 +135,8 @@ configMaps:
|
|||||||
"tag:tos-relay": [ "group:admin" ],
|
"tag:tos-relay": [ "group:admin" ],
|
||||||
"tag:vtn-relay": [ "group:admin" ],
|
"tag:vtn-relay": [ "group:admin" ],
|
||||||
"tag:mumindalen": [ "group:admin" ],
|
"tag:mumindalen": [ "group:admin" ],
|
||||||
|
"tag:ekman": [ "group:admin" ],
|
||||||
|
"tag:rossby": [ "group:admin" ],
|
||||||
},
|
},
|
||||||
// hosts should be defined using its IP addresses and a subnet mask.
|
// hosts should be defined using its IP addresses and a subnet mask.
|
||||||
// to define a single host, use a /32 mask. You cannot use DNS entries here,
|
// to define a single host, use a /32 mask. You cannot use DNS entries here,
|
||||||
@@ -159,25 +161,10 @@ configMaps:
|
|||||||
"net.mgmt.vtn": "172.16.238.0/24",
|
"net.mgmt.vtn": "172.16.238.0/24",
|
||||||
},
|
},
|
||||||
"acls": [
|
"acls": [
|
||||||
{
|
|
||||||
"action": "accept",
|
|
||||||
"src": [
|
|
||||||
"group:admin",
|
|
||||||
"group:devops",
|
|
||||||
"group:oceanographer",
|
|
||||||
"group:manager",
|
|
||||||
"group:dev",
|
|
||||||
],
|
|
||||||
"dst": [
|
|
||||||
"100.64.0.0/10:0",
|
|
||||||
"100.64.0.0/10:22",
|
|
||||||
]
|
|
||||||
},
|
|
||||||
{
|
{
|
||||||
"action": "accept",
|
"action": "accept",
|
||||||
"src": [ "tag:tos-relay", "net.dc.tos" ],
|
"src": [ "tag:tos-relay", "net.dc.tos" ],
|
||||||
"dst": [
|
"dst": [
|
||||||
"tag:vtn-relay:0",
|
|
||||||
"tag:vtn-relay:*",
|
"tag:vtn-relay:*",
|
||||||
"net.dc.vtn:*",
|
"net.dc.vtn:*",
|
||||||
]
|
]
|
||||||
@@ -186,7 +173,6 @@ configMaps:
|
|||||||
"action": "accept",
|
"action": "accept",
|
||||||
"src": [ "tag:vtn-relay", "net.dc.vtn" ],
|
"src": [ "tag:vtn-relay", "net.dc.vtn" ],
|
||||||
"dst": [
|
"dst": [
|
||||||
"tag:tos-relay:0",
|
|
||||||
"tag:tos-relay:*",
|
"tag:tos-relay:*",
|
||||||
"net.dc.tos:*",
|
"net.dc.tos:*",
|
||||||
]
|
]
|
||||||
@@ -224,19 +210,12 @@ configMaps:
|
|||||||
"ingress.oceanbox.tos:443",
|
"ingress.oceanbox.tos:443",
|
||||||
"ingress.ekman.tos:443",
|
"ingress.ekman.tos:443",
|
||||||
"printer.office.tos:631",
|
"printer.office.tos:631",
|
||||||
"10.255.241.99/32:22",
|
|
||||||
"10.255.241.100/32:22",
|
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"action": "accept",
|
"action": "accept",
|
||||||
"src": [
|
"src": [ "tag:mumindalen", ],
|
||||||
"tag:mumindalen",
|
"dst": [ "100.64.0.0/10:*", ]
|
||||||
"group:admin",
|
|
||||||
],
|
|
||||||
"dst": [
|
|
||||||
"100.64.0.0/10:*",
|
|
||||||
]
|
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"action": "accept",
|
"action": "accept",
|
||||||
@@ -250,7 +229,6 @@ configMaps:
|
|||||||
"dst": [
|
"dst": [
|
||||||
"tag:hpc:*",
|
"tag:hpc:*",
|
||||||
"tag:mumindalen:*",
|
"tag:mumindalen:*",
|
||||||
"tag:tos-relay:*",
|
|
||||||
"autogroup:internet:*",
|
"autogroup:internet:*",
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
@@ -265,9 +243,7 @@ configMaps:
|
|||||||
],
|
],
|
||||||
"dst": [
|
"dst": [
|
||||||
"tag:hpc:*",
|
"tag:hpc:*",
|
||||||
"tag:tos-relay:*",
|
"100.64.0.0/10:22",
|
||||||
"100.64.0.2/32:0",
|
|
||||||
"100.64.0.0/10:*",
|
|
||||||
"autogroup:internet:*",
|
"autogroup:internet:*",
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
|
|||||||
Reference in New Issue
Block a user