Update firewall config for docker usage

2020-03-22 21:21:39 -04:00 · 2020-03-22 21:21:39 -04:00 · 088123b3ce
commit 088123b3ce
parent 9970e17d2f
1 changed files with 10 additions and 3 deletions
--- a/playbooks/configure-docker.yml
+++ b/playbooks/configure-docker.yml
@ -1,16 +1,23 @@
 ---
- import_playbook: meta.yml
-
 - name: Configure docker hosts
  hosts: servers
  roles:
    - role: docker
  tasks:
-    - name: Disable firewall on internal interface
+    - name: Allow swarm traffic through the firewall
      become: true
      firewalld:
        state: enabled
        service: docker-swarm
+        zone: public
+        permanent: true
+        immediate: true
+    - name: Disable firewall on docker bridge interface
+      become: true
+      firewalld:
+        state: enabled
+        interface: docker0
+        zone: trusted
        permanent: true
        immediate: true