func()

in internal/system/ports.go [48:77]

• 30 lines of code
• 7 McCabe index (conditional complexity)

func (s *portsAspect) Setup() error {
	firewallEnabled, err := s.firewallManager.IsEnabled()
	if err != nil {
		s.logger.Warn("Failed to get firewall status", zap.Error(err))
		s.logger.Info("Skip setting firewall rules")
		return nil
	}
	if firewallEnabled {
		s.logger.Info("Allowing port on firewall", zap.Reflect("kubelet-server-port", kubeletServePort))
		if err = s.firewallManager.AllowTcpPort(kubeletServePort); err != nil {
			return err
		}
		s.logger.Info("Allowing port on firewall", zap.Reflect("kube-proxy-port", kubeProxyHealthzPort))
		if err = s.firewallManager.AllowTcpPort(kubeProxyHealthzPort); err != nil {
			return err
		}
		s.logger.Info("Allowing port on firewall", zap.Reflect("node-port-services",
			fmt.Sprintf("%s-%s", nodePortStartRangePort, nodePortEndRangePort)))
		if err = s.firewallManager.AllowTcpPortRange(nodePortStartRangePort, nodePortEndRangePort); err != nil {
			return err
		}
		s.logger.Info("Flushing firewall rules")
		if err = s.firewallManager.FlushRules(); err != nil {
			return err
		}
	} else {
		s.logger.Info("No firewall enabled on the host. Skipping setting firewall rules...")
	}
	return nil
}