The labs project contintcloud created by T86167, needs to have its instances network isolated at OpenStack level. We need to determine the list of security rules we would have to apply. Things that come to mind:
out access to:
- labs infrastructure (puppet? dns ntp ..)
- npm/pip/rubygems
- Gerrit
- Zuul git repositories
in access from:
- Jenkins master via ssh