From 56a476c7ed697b737b13ef50605db76183fb0eb2 Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Sun, 5 Jul 2020 12:03:26 -0700
Subject: [PATCH] inventory: allow noc01 to connect to db-fas01 and db-koji01
 to monitor them

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
---
 inventory/host_vars/db-fas01.iad2.fedoraproject.org  | 2 ++
 inventory/host_vars/db-koji01.iad2.fedoraproject.org | 1 +
 2 files changed, 3 insertions(+)

diff --git a/inventory/host_vars/db-fas01.iad2.fedoraproject.org b/inventory/host_vars/db-fas01.iad2.fedoraproject.org
index 1ee2a20a24..9511809b56 100644
--- a/inventory/host_vars/db-fas01.iad2.fedoraproject.org
+++ b/inventory/host_vars/db-fas01.iad2.fedoraproject.org
@@ -34,6 +34,8 @@ custom_rules: [
     '-A INPUT -p tcp -m tcp -s 10.3.163.71   --dport 5432 -j ACCEPT',
     '-A INPUT -p tcp -m tcp -s 10.3.163.72   --dport 5432 -j ACCEPT',
     '-A INPUT -p tcp -m tcp -s 10.3.163.73   --dport 5432 -j ACCEPT',
+    # noc01 needs to connect to check the db
+    '-A INPUT -p tcp -m tcp -s 10.3.163.10   --dport 5432 -j ACCEPT',
 ]
 #
 # Large updates pushes cause lots of db threads doing the tag moves, so up this from default. 
diff --git a/inventory/host_vars/db-koji01.iad2.fedoraproject.org b/inventory/host_vars/db-koji01.iad2.fedoraproject.org
index 08fff88347..bf762fa108 100644
--- a/inventory/host_vars/db-koji01.iad2.fedoraproject.org
+++ b/inventory/host_vars/db-koji01.iad2.fedoraproject.org
@@ -34,6 +34,7 @@ kernel_shmmax: 68719476736
 custom_rules: [ 
 '-A INPUT -p tcp -m tcp -s 10.3.169.104 --dport 5432 -j ACCEPT', 
 '-A INPUT -p tcp -m tcp -s 10.3.169.105 --dport 5432 -j ACCEPT', 
+'-A INPUT -p tcp -m tcp -s 10.3.169.10 --dport 5432 -j ACCEPT', 
 ]
 
 #