diff options
Diffstat (limited to 'manifests/subsystems')
-rw-r--r-- | manifests/subsystems/firewall/vserver.pp | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/manifests/subsystems/firewall/vserver.pp b/manifests/subsystems/firewall/vserver.pp index e914fc6..623e6f1 100644 --- a/manifests/subsystems/firewall/vserver.pp +++ b/manifests/subsystems/firewall/vserver.pp @@ -331,3 +331,26 @@ class firewall::vserver::dns($destination, $zone = 'vm') { order => '2004', } } + +class firewall::vserver::tor($destination, $zone = 'fw') { + shorewall::rule { 'tor-1': + action => 'DNAT', + source => 'net', + destination => "$zone:$destination:9001", + proto => 'tcp', + destinationport => '9001', + ratelimit => '-', + order => '2100', + } + + shorewall::rule { 'tor-2': + action => 'DNAT', + source => '$FW', + destination => "$zone:$destination:9001", + proto => 'tcp', + destinationport => '9001', + originaldest => "$ipaddress", + ratelimit => '-', + order => '2101', + } +} |