web-proxy: add firewall configuration

Allow internal http and https to pass on web proxies. To-do: logic for web proxies directly attached to the internet. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>
author: Georg Pfuetzenreuter 2023-02-05 14:29:25 +0100
committer: Georg Pfuetzenreuter 2023-02-05 14:29:25 +0100
commit: 5e02090bc6037ac2e30190d97c3717c3fee01f96 (patch)
tree: 490a8c08970378cc4c1bd783e52ea7df0a7c5439
parent: 785986d2acc45ddb5451dffc1840b13accdd871c (diff)
download: salt-5e02090bc6037ac2e30190d97c3717c3fee01f96.tar.gz
salt-5e02090bc6037ac2e30190d97c3717c3fee01f96.tar.bz2
salt-5e02090bc6037ac2e30190d97c3717c3fee01f96.zip
1 files changed, 6 insertions, 1 deletions
diff --git a/pillar/role/web-proxy.sls b/pillar/role/web-proxy.sls
index 1b7497c..2adc81c 100644
--- a/pillar/role/web-proxy.sls
+++ b/pillar/role/web-proxy.sls
@@ -28,4 +28,9 @@ nginx:
       {%- endfor %}
     {%- endif %}
 
-
+firewalld:
+  zones:
+    internal:
+      services:
+        - http
+        - https
author	Georg Pfuetzenreuter	2023-02-05 14:29:25 +0100
committer	Georg Pfuetzenreuter	2023-02-05 14:29:25 +0100
commit	5e02090bc6037ac2e30190d97c3717c3fee01f96 (patch)
tree	490a8c08970378cc4c1bd783e52ea7df0a7c5439
parent	785986d2acc45ddb5451dffc1840b13accdd871c (diff)
download	salt-5e02090bc6037ac2e30190d97c3717c3fee01f96.tar.gz salt-5e02090bc6037ac2e30190d97c3717c3fee01f96.tar.bz2 salt-5e02090bc6037ac2e30190d97c3717c3fee01f96.zip