From a5622d2209c3cbb9e34ca217fd570664d5d3c37e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Greg=20Kar=C3=A9kinian?= Date: Sat, 16 Jan 2016 16:02:26 -0500 Subject: [PATCH] Add firewall rules for mosh --- site-cookbooks/kosmos-base/metadata.rb | 2 +- site-cookbooks/kosmos-base/recipes/default.rb | 2 ++ site-cookbooks/kosmos-base/recipes/firewall.rb | 6 ++++++ 3 files changed, 9 insertions(+), 1 deletion(-) diff --git a/site-cookbooks/kosmos-base/metadata.rb b/site-cookbooks/kosmos-base/metadata.rb index 7fabd33..71e9585 100644 --- a/site-cookbooks/kosmos-base/metadata.rb +++ b/site-cookbooks/kosmos-base/metadata.rb @@ -4,7 +4,7 @@ maintainer_email 'mail@kosmos.org' license 'All rights reserved' description 'The Kosmos base cookbook' long_description IO.read(File.join(File.dirname(__FILE__), 'README.md')) -version '0.1.0' +version '0.1.1' depends 'unattended-upgrades' depends 'users' diff --git a/site-cookbooks/kosmos-base/recipes/default.rb b/site-cookbooks/kosmos-base/recipes/default.rb index 7833582..13aac06 100644 --- a/site-cookbooks/kosmos-base/recipes/default.rb +++ b/site-cookbooks/kosmos-base/recipes/default.rb @@ -18,6 +18,8 @@ include_recipe 'unattended-upgrades' package 'ruby2.1' package 'ruby2.1-dev' +package 'mosh' + include_recipe 'users::sysadmins' node.override['authorization']['sudo']['passwordless'] = true diff --git a/site-cookbooks/kosmos-base/recipes/firewall.rb b/site-cookbooks/kosmos-base/recipes/firewall.rb index d46565e..92818fd 100644 --- a/site-cookbooks/kosmos-base/recipes/firewall.rb +++ b/site-cookbooks/kosmos-base/recipes/firewall.rb @@ -17,3 +17,9 @@ firewall_rule 'ssh' do protocol :tcp action :allow end + +firewall_rule 'mosh' do + port 60000..61000 + protocol :udp + action :allow +end