diff options
| author | Silvio Rhatto <rhatto@riseup.net> | 2010-07-17 14:07:29 -0300 |
|---|---|---|
| committer | Silvio Rhatto <rhatto@riseup.net> | 2010-07-17 14:07:29 -0300 |
| commit | 6d43efc5481736aae0e3bdb691ace23b91313d52 (patch) | |
| tree | 6257cde5753e0a1c2d1c729f4673a305e73e2d3d | |
| parent | ac2b50aa082441580b099c7628770e36741d7637 (diff) | |
| download | puppet-nodo-6d43efc5481736aae0e3bdb691ace23b91313d52.tar.gz puppet-nodo-6d43efc5481736aae0e3bdb691ace23b91313d52.tar.bz2 | |
SNMP firewall rules for printers
| -rw-r--r-- | manifests/subsystems/firewall.pp | 24 |
1 files changed, 22 insertions, 2 deletions
diff --git a/manifests/subsystems/firewall.pp b/manifests/subsystems/firewall.pp index 759562b..6c0b9b7 100644 --- a/manifests/subsystems/firewall.pp +++ b/manifests/subsystems/firewall.pp @@ -303,7 +303,7 @@ class firewall::printer { order => "201", } - shorewall::rule { "hp-pdl-datastr-tcp": + shorewall::rule { "hplip-tcp": action => 'ACCEPT', source => 'net', destination => '$FW', @@ -313,7 +313,7 @@ class firewall::printer { order => "200", } - shorewall::rule { "hp-pdl-datastr-udp": + shorewall::rule { "hplip-udp": action => 'ACCEPT', source => 'net', destination => '$FW', @@ -322,4 +322,24 @@ class firewall::printer { ratelimit => '-', order => "201", } + + shorewall::rule { "snmp-tcp": + action => 'ACCEPT', + source => 'net', + destination => '$FW', + proto => 'tcp', + destinationport => "161", + ratelimit => '-', + order => "200", + } + + shorewall::rule { "snmp-udp": + action => 'ACCEPT', + source => 'net', + destination => '$FW', + proto => 'udp', + destinationport => "161", + ratelimit => '-', + order => "201", + } } |