From 779a73cd485dd48e83e84a2a99ecb47ce94d994a Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <puiterwijk@redhat.com>
Date: Tue, 3 Apr 2018 22:39:13 +0000
Subject: [PATCH] Allow dhcp and tftp from eth1

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
---
 .../host_vars/cloud-noc01.cloud.fedoraproject.org  | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org b/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org
index 526be47289..55de2cbff7 100644
--- a/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org
+++ b/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org
@@ -12,4 +12,16 @@ freezes: false
 resolvconf: "{{ files }}/resolv.conf/cloud-noc01.cloud.fedoraproject.org"
 
 tcp_ports: ['22']
-custom_rules: [ '-A INPUT -i eth0 -p tcp -m tcp -s 209.132.184.0/24  --dport 67 -j ACCEPT', '-A INPUT -i eth0 -p tcp -m tcp -s 209.132.184.0/24  --dport 68 -j ACCEPT', '-A INPUT -i eth0 -p tcp -m tcp -s 209.132.184.0/24  --dport 69 -j ACCEPT',  '-A INPUT -i eth0 -p udp -m udp -s 209.132.184.0/24  --dport 67 -j ACCEPT', '-A INPUT -i eth0 -p udp -m udp -s 209.132.184.0/24  --dport 68 -j ACCEPT', '-A INPUT -i eth0 -p udp -m udp -s 209.132.184.0/24  --dport 69 -j ACCEPT' ]
+custom_rules: [ '-A INPUT -i eth0 -p tcp -m tcp -s 209.132.184.0/24  --dport 67 -j ACCEPT',
+                '-A INPUT -i eth0 -p tcp -m tcp -s 209.132.184.0/24  --dport 68 -j ACCEPT',
+                '-A INPUT -i eth0 -p tcp -m tcp -s 209.132.184.0/24  --dport 69 -j ACCEPT',
+                '-A INPUT -i eth0 -p udp -m udp -s 209.132.184.0/24  --dport 67 -j ACCEPT',
+                '-A INPUT -i eth0 -p udp -m udp -s 209.132.184.0/24  --dport 68 -j ACCEPT',
+                '-A INPUT -i eth0 -p udp -m udp -s 209.132.184.0/24  --dport 69 -j ACCEPT' 
+                '-A INPUT -i eth1 -p tcp -m tcp -s 172.23.0.0/23  --dport 67 -j ACCEPT',
+                '-A INPUT -i eth1 -p tcp -m tcp -s 172.23.0.0/23  --dport 68 -j ACCEPT',
+                '-A INPUT -i eth1 -p tcp -m tcp -s 172.23.0.0/23  --dport 69 -j ACCEPT',
+                '-A INPUT -i eth1 -p udp -m udp -s 172.23.0.0/23  --dport 67 -j ACCEPT',
+                '-A INPUT -i eth1 -p udp -m udp -s 172.23.0.0/23  --dport 68 -j ACCEPT',
+                '-A INPUT -i eth1 -p udp -m udp -s 172.23.0.0/23  --dport 69 -j ACCEPT' 
+]