710e0db068
Modifying the public zone is questionable, let's use our own zone. Also let's make sure network_interface actually belongs to it. Change-Id: I63f5fa4845aa8f1c90a0c73dd78deb45aaaa4fd1
12 lines
416 B
YAML
12 lines
416 B
YAML
---
|
|
fixes:
|
|
- |
|
|
Instead of modifying the ``public`` firewalld zone, creates a new zone
|
|
``bifrost`` and puts the ``network_interface`` in it. Set
|
|
``firewalld_internal_zone=public`` to revert to the previous behavior.
|
|
upgrade:
|
|
- |
|
|
Bifrost no longer adds ironic and ironic-inspector endpoints to the public
|
|
firewalld zone, the operator has to do it explicitly if external access
|
|
is expected.
|