From c4382eb208ee7bc4db402af9ee5e18ba65eebb8b Mon Sep 17 00:00:00 2001
From: "Joshua M. Boniface" <joshua@boniface.me>
Date: Fri, 1 Sep 2023 15:42:20 -0400
Subject: [PATCH] Make libvirt listen only on cluster IP

---
 roles/pvc/templates/libvirt/libvirtd.conf.j2 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/pvc/templates/libvirt/libvirtd.conf.j2 b/roles/pvc/templates/libvirt/libvirtd.conf.j2
index dcf1cf3..1b3aa50 100644
--- a/roles/pvc/templates/libvirt/libvirtd.conf.j2
+++ b/roles/pvc/templates/libvirt/libvirtd.conf.j2
@@ -3,5 +3,6 @@
 
 listen_tls = 0
 listen_tcp = 1
+listen_addr = "{% for node in pvc_nodes if node.hostname == ansible_hostname %}{{ node.cluster_ip }}{% endfor %}"
 tcp_port = "16509"
 auth_tcp = "none"