diff options
| author | Sam Thursfield <sam.thursfield@codethink.co.uk> | 2015-03-26 12:48:48 +0000 |
|---|---|---|
| committer | Sam Thursfield <sam.thursfield@codethink.co.uk> | 2015-03-26 16:32:56 +0000 |
| commit | ad617f0339ee098425a2b455bd17edab5956a18d (patch) | |
| tree | 3b0bff6471c8f63b038aee5c69d6952f13654ef4 /firewall.yaml | |
| parent | 3b8767aea464fc82b21e321aa883783eff2419b5 (diff) | |
| download | infrastructure-ad617f0339ee098425a2b455bd17edab5956a18d.tar.gz | |
Add simple mail relay instance
This is a Fedora Cloud 21 instance running exim4, for the moment.
Change-Id: I6298a134bb474c65dd57a1bda87469dc3cd88441
Diffstat (limited to 'firewall.yaml')
| -rw-r--r-- | firewall.yaml | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/firewall.yaml b/firewall.yaml index 5c933b91..9009de0e 100644 --- a/firewall.yaml +++ b/firewall.yaml @@ -198,6 +198,26 @@ protocol: tcp remote_ip_prefix: 0.0.0.0/0 + - name: internal mail relay security group + neutron_sec_group: + name: internal-mail-relay + description: Allow receiving internal-only connections on port 25 for SMTP + state: present + + auth_url: "{{ ansible_env.OS_AUTH_URL }}" + login_username: "{{ ansible_env.OS_USERNAME }}" + login_password: "{{ ansible_env.OS_PASSWORD }}" + login_tenant_name: "{{ ansible_env.OS_TENANT_NAME }}" + + rules: + # 25: SMTP, for sending emails. + - direction: ingress + port_range_min: 25 + port_range_max: 25 + ethertype: IPv4 + protocol: tcp + remote_ip_prefix: 192.168.222.0/24 + - name: Mason x86 security group neutron_sec_group: name: mason-x86 |