Skip to content

provisioner: allow tftp access from admin network only (bsc#1019111) #2033

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: stable/5.0-pike
Choose a base branch
from
Open

provisioner: allow tftp access from admin network only (bsc#1019111) #2033

wants to merge 1 commit into from

Conversation

@djoreilly
Copy link
Contributor

@djoreilly djoreilly commented Jun 23, 2020

The tftp server is for hosts on the admin network only. But it can be
accessed from outside if the admin network is routable. This patch adds
an iptables rule to prevent access from outside the admin network.

(cherry picked from commit a699d6c)

@djoreilly djoreilly requested a review from flaviodsr August 13, 2020 13:40
JanZerebecki
JanZerebecki previously approved these changes Nov 18, 2020
View reviewed changes
@JanZerebecki
Copy link
Contributor

JanZerebecki commented Nov 18, 2020

Backport of #2032

@JanZerebecki
Copy link
Contributor

JanZerebecki commented Dec 1, 2020

This probably needs a rebase to fix CI.

@djoreilly
provisioner: allow tftp access from admin network only (bsc#1019111)
36bcfe2 
The tftp server is for hosts on the admin network only. But it can be
accessed from outside if the admin network is routable. This patch adds
an iptables rule to prevent access from outside the admin network.

(cherry picked from commit a699d6c)
@djoreilly djoreilly force-pushed the tftp-net-restrict-soc8 branch from 1fcf10f to 36bcfe2 Compare December 2, 2020 14:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JanZerebecki JanZerebecki JanZerebecki left review comments

@flaviodsr flaviodsr Awaiting requested review from flaviodsr

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

backport from SOC9 wip

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@djoreilly @JanZerebecki