diff options
| author | Silvio Rhatto <rhatto@riseup.net> | 2011-09-14 12:00:59 -0300 |
|---|---|---|
| committer | Silvio Rhatto <rhatto@riseup.net> | 2011-09-14 12:00:59 -0300 |
| commit | d4df8cad44650e3322bd90d375add470bedaa288 (patch) | |
| tree | 079bbd302c12794649ef729f6611d32cde486f6b | |
| parent | 2f37ebd3d54e58234a97a2fa9aced2f41fcd6747 (diff) | |
| download | puppet-nodo-d4df8cad44650e3322bd90d375add470bedaa288.tar.gz puppet-nodo-d4df8cad44650e3322bd90d375add470bedaa288.tar.bz2 | |
Adding firewall::ppp
| -rw-r--r-- | manifests/init.pp | 1 | ||||
| -rw-r--r-- | manifests/subsystems/firewall/ppp.pp | 31 |
2 files changed, 32 insertions, 0 deletions
diff --git a/manifests/init.pp b/manifests/init.pp index f96b5ee..250e88f 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -87,6 +87,7 @@ import "subsystems/firewall/ups.pp" import "subsystems/firewall/wifi.pp" import "subsystems/firewall/local.pp" import "subsystems/firewall/openvpn.pp" +import "subsystems/firewall/ppp.pp" # Import nodo classes import "nodo.pp" diff --git a/manifests/subsystems/firewall/ppp.pp b/manifests/subsystems/firewall/ppp.pp new file mode 100644 index 0000000..f646519 --- /dev/null +++ b/manifests/subsystems/firewall/ppp.pp @@ -0,0 +1,31 @@ +class firewall::ppp { + shorewall::zone { 'ppp': + type => 'ipv4', + order => '4', + } + + shorewall::interface { 'ppp0': + zone => 'ppp', + } + + shorewall::policy { 'loc-ppp': + sourcezone => 'loc', + destinationzone => 'ppp', + policy => 'ACCEPT', + order => '30', + } + + shorewall::policy { 'ppp-loc': + sourcezone => 'ppp', + destinationzone => 'loc', + policy => 'ACCEPT', + order => '31', + } + + shorewall::policy { 'fw-ppp': + sourcezone => '$FW', + destinationzone => 'ppp', + policy => 'ACCEPT', + order => '32', + } +} |