podman - npm: redefine unprivileged ports
This commit is contained in:
LinuxSquare
parent
ed36fb8041
commit
6e020a8333
2 changed files with 10 additions and 4 deletions
3
podman/containers/files/files_unprivileged_ports.jinja
Normal file
3
podman/containers/files/files_unprivileged_ports.jinja
Normal file
|
|
@ -0,0 +1,3 @@
|
||||||
|
{%- for port in UNPRIVILEGED_PORTS %}
|
||||||
|
net.ipv4.ip_unprivileged_port_start={{ port }}
|
||||||
|
{%- endfor %}
|
||||||
|
|
@ -42,7 +42,10 @@ podman_containers_npm_letsencrypt_dir:
|
||||||
podman_containers_npm_privileged_ports:
|
podman_containers_npm_privileged_ports:
|
||||||
file.managed:
|
file.managed:
|
||||||
- name: /etc/sysctl.d/podman.conf
|
- name: /etc/sysctl.d/podman.conf
|
||||||
- text: |
|
- source: salt://{{ tpldir }}/files/files_unprivileged_ports.jinja
|
||||||
net.ipv4.ip_unprivileged_port_start=80
|
- template: jinja
|
||||||
net.ipv4.ip_unprivileged_port_start=443
|
- context:
|
||||||
net.ipv4.ip_unprivileged_port_start=81
|
UNPRIVILEGED_PORTS: [22, 80, 81, 443]
|
||||||
|
- user: root
|
||||||
|
- group: root
|
||||||
|
- mode: '0644'
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue