Expose #36
Comments
|
The expose command in juju interfaces with intermediary networking routers/firewall implementations. The following providers ship with this by default:
Digital Ocean by default does not have a Zone level firewall that requires 'exposing' - and therefore the command really no-ops other than declaring to the juju state server that these ports should be / are open. Any further security on the services deployed to DigitalOcean should be done via a subordinate firewall configuration, or by ssh'ing into the machine and setting up your own firewalling scripts. This is a side-effect of the current state of Juju, and the fact we dont ship with a default firewall in place on the unit/service level. I'll get a PR for the provider plugin README as a caveat to help shore this up. Thanks for reporting this @ethernyEonian |
Hi, it look like when i deploy a charm, it's always exposed, this is normal ?
I want to expose only my choosen services.
If i do :
juju deploy wordpress
juju deploy mysql
and link wordpress to mysql, wordpress is by default exposed.
I try to :
juju unexpose wordpress, but it don't close the 80 http port.
Thank you for your help.
The text was updated successfully, but these errors were encountered: