aboutsummaryrefslogtreecommitdiffstats
path: root/heat/vFWCL/vFWSNK
diff options
context:
space:
mode:
Diffstat (limited to 'heat/vFWCL/vFWSNK')
-rw-r--r--heat/vFWCL/vFWSNK/base_vfw.env1
-rw-r--r--heat/vFWCL/vFWSNK/base_vfw.yaml13
2 files changed, 14 insertions, 0 deletions
diff --git a/heat/vFWCL/vFWSNK/base_vfw.env b/heat/vFWCL/vFWSNK/base_vfw.env
index f026264a..83d90f28 100644
--- a/heat/vFWCL/vFWSNK/base_vfw.env
+++ b/heat/vFWCL/vFWSNK/base_vfw.env
@@ -29,3 +29,4 @@ parameters:
key_name: vfw_key
pub_key: PUT YOUR KEY HERE
cloud_env: PUT openstack OR rackspace HERE
+ sec_group: PUT THE ONAP SECURITY GROUP HERE
diff --git a/heat/vFWCL/vFWSNK/base_vfw.yaml b/heat/vFWCL/vFWSNK/base_vfw.yaml
index e75cef21..73b2c2a5 100644
--- a/heat/vFWCL/vFWSNK/base_vfw.yaml
+++ b/heat/vFWCL/vFWSNK/base_vfw.yaml
@@ -157,6 +157,9 @@ parameters:
type: string
label: Cloud environment
description: Cloud environment (e.g., openstack, rackspace)
+ sec_group:
+ type: string
+ description: ONAP Security Group
#############
# #
@@ -212,6 +215,8 @@ resources:
properties:
network: { get_resource: unprotected_private_network }
fixed_ips: [{"subnet": { get_resource: unprotected_private_subnet }, "ip_address": { get_param: vfw_private_ip_0 }}]
+ security_groups:
+ - { get_param: sec_group }
vfw_private_1_port:
type: OS::Neutron::Port
@@ -219,12 +224,16 @@ resources:
allowed_address_pairs: [{ "ip_address": { get_param: vpg_private_ip_0 }}]
network: { get_resource: protected_private_network }
fixed_ips: [{"subnet": { get_resource: protected_private_subnet }, "ip_address": { get_param: vfw_private_ip_1 }}]
+ security_groups:
+ - { get_param: sec_group }
vfw_private_2_port:
type: OS::Neutron::Port
properties:
network: { get_param: onap_private_net_id }
fixed_ips: [{"subnet": { get_param: onap_private_subnet_id }, "ip_address": { get_param: vfw_private_ip_2 }}]
+ security_groups:
+ - { get_param: sec_group }
vfw_0:
type: OS::Nova::Server
@@ -291,12 +300,16 @@ resources:
properties:
network: { get_resource: protected_private_network }
fixed_ips: [{"subnet": { get_resource: protected_private_subnet }, "ip_address": { get_param: vsn_private_ip_0 }}]
+ security_groups:
+ - { get_param: sec_group }
vsn_private_1_port:
type: OS::Neutron::Port
properties:
network: { get_param: onap_private_net_id }
fixed_ips: [{"subnet": { get_param: onap_private_subnet_id }, "ip_address": { get_param: vsn_private_ip_1 }}]
+ security_groups:
+ - { get_param: sec_group }
vsn_0:
type: OS::Nova::Server