Tableau to Inventory Access

VERIFIED FIXED

Status

VERIFIED FIXED
2 years ago
2 years ago

People

(Reporter: jbarnell, Assigned: jbarnell)

Tracking

Details

(Assignee)

Description

2 years ago
not sure what bug to put this in...

Please open the netflows

FROM
tableau1.metrics.scl3.mozilla.com aka 10.22.27.136
tableau2.metrics.scl3.mozilla.com aka 10.22.27.137
tableau3.metrics.scl3.mozilla.com aka 10.22.27.139 (not a typo)

TO
PORT 3306
ON
intranet-ro-vip.db.scl3.mozilla.com aka b2-ro-vip.db.scl3.mozilla.com aka 10.22.70.60

intranet-rw-vip.db.scl3.mozilla.com aka b2-rw-vip.db.scl3.mozilla.com aka 10.22.70.61

Thanx!
(Assignee)

Updated

2 years ago
Assignee: network-operations → jbarnell
(Assignee)

Comment 1

2 years ago
UPDATED:

jbarnell@fw1.ops.scl3.mozilla.net# show | compare 
[edit security policies from-zone metrics to-zone db policy tableau-metrics--mysql match]
-      destination-address [ generic-rw-large-vip.db.scl3 generic-ro-large-vip.db.scl3 ];
+      destination-address [ generic-rw-large-vip.db.scl3 generic-ro-large-vip.db.scl3 b2-rw-vip.db.scl3 b2-ro-vip.db.scl3 ];

FULL POLICY: 

{primary:node1}[edit]
jbarnell@fw1.ops.scl3.mozilla.net# show security policies from-zone metrics to-zone db policy tableau-metrics--mysql 
match {
    source-address [ tableau1.metrics.scl3 tableau2.metrics.scl3 tableau3.metrics.scl3 ];
    destination-address [ generic-rw-large-vip.db.scl3 generic-ro-large-vip.db.scl3 b2-rw-vip.db.scl3 b2-ro-vip.db.scl3 ];
    application mysql;
}
then {
    permit;
}
Verified, thank you!
Status: NEW → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → FIXED
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.