From e55399eb40f971eb41ced123cfc958ad0f7c6878 Mon Sep 17 00:00:00 2001 From: Silvio Rhatto Date: Wed, 10 Feb 2010 23:00:43 -0200 Subject: Adding back previous rules but with 'originaldest' --- manifests/init.pp | 30 ++++++++++++++++++++++++++---- 1 file changed, 26 insertions(+), 4 deletions(-) (limited to 'manifests') diff --git a/manifests/init.pp b/manifests/init.pp index 1e041cd..a747f0e 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -283,6 +283,28 @@ class nodo::vserver inherits nodo { ratelimit => '-', order => '303', } + + shorewall::rule { 'puppetmaster-3': + action => 'DNAT', + source => '$FW', + destination => "fw:192.168.0.$context:8140", + proto => 'tcp', + destinationport => '8140', + originaldest => "$ipaddress", + ratelimit => '-', + order => '304', + } + + shorewall::rule { 'puppetmaster-4': + action => 'DNAT', + source => '$FW', + destination => "fw:192.168.0.$context:8140", + proto => 'udp', + destinationport => '8140', + originaldest => "$ipaddress", + ratelimit => '-', + order => '305', + } } if $gitd { @@ -293,7 +315,7 @@ class nodo::vserver inherits nodo { proto => 'tcp', destinationport => '9418', ratelimit => '-', - order => '304', + order => '306', } shorewall::rule { 'git-daemon-2': @@ -303,7 +325,7 @@ class nodo::vserver inherits nodo { proto => 'tcp', destinationport => '9418', ratelimit => '-', - order => '305', + order => '307', } } @@ -315,7 +337,7 @@ class nodo::vserver inherits nodo { proto => 'tcp', destinationport => '8000', ratelimit => '-', - order => '306', + order => '308', } shorewall::rule { 'icecast-2': @@ -325,7 +347,7 @@ class nodo::vserver inherits nodo { proto => 'tcp', destinationport => '8000', ratelimit => '-', - order => '307', + order => '309', } } } -- cgit v1.2.3