diff options
author | 2024-06-02 13:38:04 +0100 | |
---|---|---|
committer | 2024-06-02 13:38:04 +0100 | |
commit | 45e95949145f948feb8d91f2e3c8eee3a74f1a6e (patch) | |
tree | 81933148695c351f3f84785d00af97cc7c49c3ee | |
parent | Revert Prometheus listen settings to HTTP (diff) |
Remove Prometheus rules from nftables
-rw-r--r-- | ansible/group_vars/all/nftables.yml | 9 |
1 files changed, 0 insertions, 9 deletions
diff --git a/ansible/group_vars/all/nftables.yml b/ansible/group_vars/all/nftables.yml index 68d0bbd..eba3319 100644 --- a/ansible/group_vars/all/nftables.yml +++ b/ansible/group_vars/all/nftables.yml @@ -60,15 +60,6 @@ nftables_configuration: | iifname {{ ansible_default_ipv6.interface }} udp dport {{ wireguard_port }} ct state new accept {% endif %} - - {% if "monitoring" in group_names %} - # Prometheus connections - iifname {{ ansible_default_ipv4.interface }} tcp dport 9090 ct state new accept - {% if ansible_default_ipv6 is defined %} - iifname {{ ansible_default_ipv6.interface }} tcp dport 9090 ct state new accept - {% endif %} - {% endif %} - {% if "databases" in group_names %} # PostgreSQL connections iifname {{ ansible_default_ipv4.interface }} ip saddr @possible_lke_ipv4_addrs tcp dport postgresql ct state new accept |