Skip to content
Browse files

Turns out there is already a mongo policy that I can add the admin se…

…rver too.
  • Loading branch information...
1 parent 41c83a3 commit 0146ee8e7e43a061a4a83927212755b80ddd4676 @mikecanz committed Aug 13, 2012
Showing with 3 additions and 1 deletion.
  1. +3 −1 security-group-manager.pl
View
4 security-group-manager.pl
@@ -31,17 +31,19 @@
set_allowed_ips(['v1-gearman-master-prod'], 'v1-gearman-worker-nodejs-prod', 4730);
# This policy is for the nodejs worker sever to talk to MongoDB directly. It will go away.
-set_allowed_ips(['v1-gearman-worker-nodejs-prod'], 'v1-db-mongo-prod', 27017);
+set_allowed_ips(['admin','v1-gearman-worker-nodejs-prod'], 'v1-db-mongo-prod', 27017);
#######################################
# This section is for global policies #
#######################################
my @all_groups = get_all_security_groups();
# We want all our servers to be able to talk to the yum server
+# Many to one
set_allowed_ips(\@all_groups, 'v1-yum-master-prod', 80);
# We want the admin server to be able to talk to all other servers over ssh
+# One to many
map { set_allowed_ips(['admin'], $_, 22); } @all_groups;
#map { set_allowed_ips(['v1-admin'], $_, 22); } @all_groups;

0 comments on commit 0146ee8

Please sign in to comment.
Something went wrong with that request. Please try again.