aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorSilvio Rhatto <rhatto@riseup.net>2010-03-14 23:03:15 +0000
committerSilvio Rhatto <rhatto@riseup.net>2010-03-14 23:03:15 +0000
commit8c41ba01c67fb3f5317a55d7c4657de037f3ed32 (patch)
tree6a1291d507a65dab0ab80f4b879576028931130d
parent00796337529ac4dabf89d60a7237c16d31d8e239 (diff)
downloadpuppet-nodo-8c41ba01c67fb3f5317a55d7c4657de037f3ed32.tar.gz
puppet-nodo-8c41ba01c67fb3f5317a55d7c4657de037f3ed32.tar.bz2
Adding additional rules for puppetmaster
-rw-r--r--manifests/init.pp42
1 files changed, 42 insertions, 0 deletions
diff --git a/manifests/init.pp b/manifests/init.pp
index 6ce7eb0..2cfc2da 100644
--- a/manifests/init.pp
+++ b/manifests/init.pp
@@ -455,6 +455,48 @@ class nodo::vserver inherits nodo {
ratelimit => '-',
order => '703',
}
+
+ shorewall::rule { 'puppetmaster-5':
+ action => 'DNAT',
+ source => 'net',
+ destination => "fw:192.168.0.$context:8141",
+ proto => 'tcp',
+ destinationport => '8141',
+ ratelimit => '-',
+ order => '704',
+ }
+
+ shorewall::rule { 'puppetmaster-6':
+ action => 'DNAT',
+ source => 'net',
+ destination => "fw:192.168.0.$context:8141",
+ proto => 'udp',
+ destinationport => '8141',
+ ratelimit => '-',
+ order => '705',
+ }
+
+ shorewall::rule { 'puppetmaster-7':
+ action => 'DNAT',
+ source => '$FW',
+ destination => "fw:192.168.0.$context:8141",
+ proto => 'tcp',
+ destinationport => '8141',
+ originaldest => "$ipaddress",
+ ratelimit => '-',
+ order => '706',
+ }
+
+ shorewall::rule { 'puppetmaster-8':
+ action => 'DNAT',
+ source => '$FW',
+ destination => "fw:192.168.0.$context:8141",
+ proto => 'udp',
+ destinationport => '8141',
+ originaldest => "$ipaddress",
+ ratelimit => '-',
+ order => '707',
+ }
}
if $gitd {