2 files changed, 37 insertions, 0 deletions

diff --git a/deployment/playbooks/roles/gluster-ports/defaults/main.yaml b/deployment/playbooks/roles/gluster-ports/defaults/main.yaml
new file mode 100644
index 00000000..fadcb096
--- /dev/null
+++ b/deployment/playbooks/roles/gluster-ports/defaults/main.yaml
@@ -0,0 +1,3 @@
+---
+gluster_ports: ['24007', '24008', '2222', '49152:49664', '24010', '3260', '111']
+crs_ports: ['8080']
diff --git a/deployment/playbooks/roles/gluster-ports/tasks/main.yaml b/deployment/playbooks/roles/gluster-ports/tasks/main.yaml
new file mode 100644
index 00000000..a3f0565b
--- /dev/null
+++ b/deployment/playbooks/roles/gluster-ports/tasks/main.yaml
@@ -0,0 +1,34 @@
+---
+- name: open gluster ports
+  iptables:
+    chain: INPUT
+    destination_port: "{{ item }}"
+    jump: ACCEPT
+    ctstate: NEW
+    protocol: tcp
+    action: insert
+    match: tcp
+  with_items: "{{ gluster_ports }}"
+  when: groups['storage'] is defined and groups['storage'] != []
+  register: rule
+
+- name: save iptables
+  shell: iptables-save > /etc/sysconfig/iptables
+  when: rule|changed
+
+- name: open gluster ports
+  iptables:
+    chain: INPUT
+    destination_port: "{{ item }}"
+    ctstate: NEW
+    jump: ACCEPT
+    protocol: tcp
+    action: insert
+    match: tcp
+  with_items: "{{ crs_ports }}"
+  when: groups['crs'] is defined and groups['crs'] != []
+  register: heketi
+
+- name: save iptables
+  shell: iptables-save > /etc/sysconfig/iptables
+  when: heketi|changed