ACL for OnCommand NetApp monitoring of phx1-na1*

VERIFIED FIXED

Status

Infrastructure & Operations
NetOps: DC ACL Request
VERIFIED FIXED
6 years ago
4 years ago

People

(Reporter: lerxst, Assigned: casey)

Tracking

Details

(Reporter)

Description

6 years ago
Please create the following ACL to allow monitoring of phx1-na1[a,b].private.phx1. This is similar to bug 720859:

Source IP:
10.20.75.42 (OnCommand.private.corp.phx1.mozilla.com)

Destination IPs:
10.8.75.58 (phx1-na1a.private.corp.phx1.mozilla.com)
10.8.75.59 (phx1-na1b.private.corp.phx1.mozilla.com)

Ports:
tcp 22
tcp 80
tcp 111
tcp 139
tcp 161
udp 161
tcp 162
udp 162
tcp 443
tcp 445
tcp 2049
tcp 4045
tcp 10000
Could you confirm that 10.8.75.58 and 10.8.75.59 are the good IPs? Reverse and forward DNS don't match.
(Reporter)

Comment 2

6 years ago
Sorry, the correct Destination IPs are 10.8.75.77 and 10.8.75.78.
(Assignee)

Updated

6 years ago
Assignee: network-operations → cransom
(Assignee)

Comment 3

6 years ago
added to existing policy for ip-netapp-a/b and also fixed an overlapping ptr in dns.
Status: NEW → RESOLVED
Last Resolved: 6 years ago
Resolution: --- → FIXED
(Reporter)

Comment 4

6 years ago
:casey, thanks, it's working great. However, I forgot to ask for ping to be enabled, could you do that?
(Assignee)

Comment 5

6 years ago
added
(Reporter)

Comment 6

6 years ago
Thanks, everything is working great!
Status: RESOLVED → VERIFIED
Product: mozilla.org → Infrastructure & Operations

Comment 7

4 years ago
Flows marked for undoing in bug 927161, since the filers in question moved to C-mode.
See Also: → bug 927161
You need to log in before you can comment on or make changes to this bug.