dustin
/
configpolicy
1
1
Fork 0
Code Issues Releases Activity

gw1: squid: Allow access to PXE/kickstarts 

The PXE server now hosts the kickstart scripts.
unifi-restore
Dustin 2025-07-03 17:38:06 -05:00
parent a23bb1f043
commit fefa85c83b
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
host_vars/gw1.pyrocufflink.blue/squid.yml
View File

@ -19,6 +19,7 @@ squid_acl:
- src 172.30.0.160/28 - src 172.30.0.160/28
unifi_controller: unifi_controller:
- src 172.30.0.242/32 - src 172.30.0.242/32
- src 172.30.0.251/32
SSL_ports: SSL_ports:
- port 443 - port 443
Safe_ports: Safe_ports:
@ -33,6 +34,7 @@ squid_acl:
kickstart: kickstart:
- url_regex rosalina.pyrocufflink.blue/~dustin/kickstart/.*\.ks$ - url_regex rosalina.pyrocufflink.blue/~dustin/kickstart/.*\.ks$
- url_regex git.pyrocufflink.net/infra/kickstart/raw/.*/.*\.ks$ - url_regex git.pyrocufflink.net/infra/kickstart/raw/.*/.*\.ks$
- url_regex pxe.pyrocufflink.blue/kickstart/.*/.*\.ks$
fcos_updates: fcos_updates:
- dstdomain d2uk5hbyrobdzx.cloudfront.net - dstdomain d2uk5hbyrobdzx.cloudfront.net
- dstdomain ostree.fedoraproject.org - dstdomain ostree.fedoraproject.org