aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorSilvio Rhatto <rhatto@riseup.net>2012-06-08 09:57:12 -0300
committerSilvio Rhatto <rhatto@riseup.net>2012-06-08 09:57:12 -0300
commitd86ab1f83be4574658cb4543e34093ace85e36a3 (patch)
tree7d5406032b523ab4ff6b0024ed3053cb05279a55
parente223a17e68b7d7daa854c6078c4ef906a80f3542 (diff)
downloadpuppet-nodo-d86ab1f83be4574658cb4543e34093ace85e36a3.tar.gz
puppet-nodo-d86ab1f83be4574658cb4543e34093ace85e36a3.tar.bz2
Adding gobby server routing for vservers
-rw-r--r--manifests/subsystems/firewall/vserver.pp12
-rw-r--r--manifests/vserver.pp8
2 files changed, 19 insertions, 1 deletions
diff --git a/manifests/subsystems/firewall/vserver.pp b/manifests/subsystems/firewall/vserver.pp
index 30f3c39..fe96c40 100644
--- a/manifests/subsystems/firewall/vserver.pp
+++ b/manifests/subsystems/firewall/vserver.pp
@@ -453,3 +453,15 @@ class firewall::vserver::mumble($destination, $zone = 'fw') {
order => '2301',
}
}
+
+class firewall::vserver::gobby($destination, $zone = 'fw') {
+ shorewall::rule { 'gobby-0':
+ action => 'DNAT',
+ source => 'net',
+ destination => "$zone:$destination:6523",
+ proto => 'tcp',
+ destinationport => '6523',
+ ratelimit => '-',
+ order => '2400',
+ }
+}
diff --git a/manifests/vserver.pp b/manifests/vserver.pp
index 938903a..02cb102 100644
--- a/manifests/vserver.pp
+++ b/manifests/vserver.pp
@@ -48,7 +48,7 @@ class nodo::vserver inherits nodo {
$icecast = false, $sound = false, $tor = false,
$ticket = false, $memory_limit = false, $distro = 'squeeze',
$dns = false, $munin_port = false, $monkeysphere_ssh_port = false,
- $jabber = false, $mumble = false) {
+ $jabber = false, $mumble = false, $gobby = false) {
# set instance id
if $context <= 9 {
@@ -211,6 +211,12 @@ class nodo::vserver inherits nodo {
"firewall::vserver::mumble": destination => "192.168.0.$context";
}
}
+
+ if $gobby {
+ class {
+ "firewall::vserver::gobby": destination => "192.168.0.$context";
+ }
+ }
}
}
}