podman - npm: redefine unprivileged ports
This commit is contained in:
LinuxSquare
parent
ed36fb8041
commit
6e020a8333
2 changed files with 10 additions and 4 deletions
3
podman/containers/files/files_unprivileged_ports.jinja
Normal file
3
podman/containers/files/files_unprivileged_ports.jinja
Normal file
|
|
@ -0,0 +1,3 @@
|
|||
{%- for port in UNPRIVILEGED_PORTS %}
|
||||
net.ipv4.ip_unprivileged_port_start={{ port }}
|
||||
{%- endfor %}
|
||||
|
|
@ -42,7 +42,10 @@ podman_containers_npm_letsencrypt_dir:
|
|||
podman_containers_npm_privileged_ports:
|
||||
file.managed:
|
||||
- name: /etc/sysctl.d/podman.conf
|
||||
- text: |
|
||||
net.ipv4.ip_unprivileged_port_start=80
|
||||
net.ipv4.ip_unprivileged_port_start=443
|
||||
net.ipv4.ip_unprivileged_port_start=81
|
||||
- source: salt://{{ tpldir }}/files/files_unprivileged_ports.jinja
|
||||
- template: jinja
|
||||
- context:
|
||||
UNPRIVILEGED_PORTS: [22, 80, 81, 443]
|
||||
- user: root
|
||||
- group: root
|
||||
- mode: '0644'
|
||||
|
|
|
|||
Loading…
Reference in a new issue