Need playbook to install firewall #12
Comments
|
I personally think that's beyond the scope of this repository. |
|
I think this is well within the scope of the deploy-pub repository. This repo is used to deploy Archivematica projects such as Archivematica and AtoM. Including a firewall is a reasonable choice. Using http://docs.ansible.com/ansible/latest/firewalld_module.html for example, just another playbook in the list of possible playbooks to use? If not in this repo, then where should a firewall be configured in an Archivematica deployment? |
If the user happens to be using Ansible I would assume they're using these playbooks only as a reference and they're part of a bigger setup with a complex directory layout where they manage many other concerns, say backups, load balancing, monitoring, security... where do we draw the line? I'd rather write some recommendations like the following: https://www.accesstomemory.org/en/docs/2.5/admin-manual/security/firewall/#security-firewall - which gives the user a general idea of what's needed to be protected. They should know what to do next as they're running in on an on-premise environment. |
For using these in a non-Vagrant VM, need to be able to configure a firewall.
The text was updated successfully, but these errors were encountered: