Add iptables support

commit: eae81938d5a44bb348de8202002e67a08d102407 [log] [tgz]
author: Filip Pytloun <filip@pytloun.cz> Mon Apr 11 17:09:31 2016 +0200
committer: Filip Pytloun <filip@pytloun.cz> Mon Apr 11 17:09:59 2016 +0200
tree: 9beb3aa0313dc68b1c73fb9d07795b8fb430fd8e
parent: 42896e18c25daea9c44dbfafd5b1ef88d6f01b32 [diff]
diff --git a/apache/meta/iptables.yml b/apache/meta/iptables.yml
new file mode 100644
index 0000000..54e817f
--- /dev/null
+++ b/apache/meta/iptables.yml

@@ -0,0 +1,14 @@
+{%- from "apache/map.jinja" import server, listen_ports with context -%}
+{%- for port in listen_ports.iterkeys() -%}
+
+iptables:
+  rules:
+    - destination_port: {{ port }}
+      protocol: tcp
+      jump: ACCEPT
+
+{%- endfor -%}
+
+{#-
+vim: syntax=jinja
+-#}

diff --git a/metadata/service/support.yml b/metadata/service/support.yml
index cb80bf3..b830c0e 100644
--- a/metadata/service/support.yml
+++ b/metadata/service/support.yml

@@ -9,3 +9,5 @@
         enabled: true
       sphinx:
         enabled: true
+      iptables:
+        enabled: true
commit	eae81938d5a44bb348de8202002e67a08d102407	[log] [tgz]
author	Filip Pytloun <filip@pytloun.cz>	Mon Apr 11 17:09:31 2016 +0200
committer	Filip Pytloun <filip@pytloun.cz>	Mon Apr 11 17:09:59 2016 +0200
tree	9beb3aa0313dc68b1c73fb9d07795b8fb430fd8e
parent	42896e18c25daea9c44dbfafd5b1ef88d6f01b32 [diff]