-
Notifications
You must be signed in to change notification settings - Fork 6
/
Copy pathsetup_firewall.sh
executable file
·37 lines (31 loc) · 1.06 KB
/
setup_firewall.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
#!/usr/bin/env bash
source settings.default
source settings.private
# TODO confirm 1317 is still accessible internally
gcloud compute firewall-rules create "validator-rule-ipc" \
--network=default \
--allow=tcp:26656 \
--target-tags validator &
gcloud compute firewall-rules create "validator-rule-relay" \
--network=default \
--allow=tcp:26657,tcp:9090 \
--target-tags validator &
# --source-tags relayer \
# For now we use a portforward to get to 26657
#gcloud compute firewall-rules create "validator-rule-ctrl" \
# --network=default \
# --allow=tcp:26657 \
# --source-tags ctrl \
# --target-tags validator &
gcloud compute firewall-rules create "validator-rule-rest" \
--network=default \
--allow=tcp:1317 \
--source-tags oracle \
--target-tags validator &
gcloud compute firewall-rules create "priceserver-rule-rest" \
--network=default \
--allow=tcp:8532 \
--source-tags oracle \
--target-tags priceserver &
wait
gcloud compute networks subnets update default --region=${DEFAULT_REGION} --enable-private-ip-google-access