This patch is required for allowing machine-to-machine traffic within
ONAP cluster with no Vagrant operator involvement.
Issue-ID: INT-1601
Change-Id: I0159b3176ecb3e5783f4f87b9b507824fc411b2b
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
securitygroup:
name: &securitygroup_name "onap_ci_lab"
- remote_ip_prefix: "172.24.4.0/24"
+ remote_ip_prefix:
+ - "172.24.4.0/24"
+ - "192.168.1.0/24"
image:
name: &image_name "Ubuntu_18.04"
securitygroup:
name: &securitygroup_name "onap_ci_lab"
- remote_ip_prefix: "0.0.0.0/0"
+ remote_ip_prefix:
+ - "0.0.0.0/0"
image:
name: &image_name "Ubuntu_18.04"
os_security_group_rule:
security_group: "{{ secgrp.name }}"
protocol: icmp
- remote_ip_prefix: "{{ secgrp.remote_ip_prefix }}"
+ remote_ip_prefix: "{{ item }}"
+ loop: "{{ secgrp.remote_ip_prefix }}"
- name: "Create {{ secgrp.name }} security group rule for SSH"
os_security_group_rule:
protocol: tcp
port_range_min: 22
port_range_max: 22
- remote_ip_prefix: "{{ secgrp.remote_ip_prefix }}"
+ remote_ip_prefix: "{{ item }}"
+ loop: "{{ secgrp.remote_ip_prefix }}"
---
-- include: create_securitygroup.yml secgrp={{ item }}
+- include: create_securitygroup.yml
loop:
- "{{ securitygroup }}"
+ loop_control:
+ loop_var: secgrp