Firewall rules for awx

sar · January 9, 2024, 6:32am

Hi everyone,

I am setting up Awx controller and execution nodes in client restricted environment.

We are confused with what url’s need to be whitelisted and what will be the ports need to be opened on controller and direction(ingress/egress).
What could be the destination url/port/ip?
Also, between controller and executor which port needs to be opened?

Currently,
We have whitelisted quay.io on port 80 to pull image from registry.
Between controller and executor port 27199-ingress.

Please help if anyone aware of this or if you did anything similar to this.

Thank you.

thedoubl3j · January 10, 2024, 8:06pm

hey @sar for quay, you will want 443 and 80.

For awx controller, egress to execution node is on 27199.

for execution node, ingress from k8s worker node that hosts the controller task pod.

but these configuration are highly specific to your own networking environment

Topic		Replies	Views
Using AWX remotely Get Help awx	1	357	October 17, 2023
Bidirectional or Unidirectional Connectivity for Ports 22 and 5985 in Ansible AWX? Get Help awx , ansible-core	2	187	July 1, 2024
AWX Mesh ingress Looses Route Get Help awx , ee	1	199	March 13, 2024
Awx, geographically seperated hosts with ansible distribution points Get Help awx , kubernetes	4	157	May 24, 2024
Ingress not working Get Help awx , kubernetes	0	26	August 9, 2024

Firewall rules for awx

Related topics