diff options
| author | Marcel Haerry <haerry@puzzle.ch> | 2008-05-26 16:20:59 +0200 |
|---|---|---|
| committer | Marcel Haerry <haerry@puzzle.ch> | 2008-05-26 16:20:59 +0200 |
| commit | 2bd5b840234352daf85ecc2dcaff4f4fbc43a0ab (patch) | |
| tree | 9fb8dada3621f1fe45c552dc0c4a380a90de30e3 | |
| parent | 720abf9cfcbb1303170766281c98c48ab5631ed5 (diff) | |
| download | puppet-resolvconf-2bd5b840234352daf85ecc2dcaff4f4fbc43a0ab.tar.gz puppet-resolvconf-2bd5b840234352daf85ecc2dcaff4f4fbc43a0ab.tar.bz2 | |
added shorewall config for dns
| -rw-r--r-- | manifests/init.pp | 4 | ||||
| -rw-r--r-- | manifests/shorewall.pp | 22 |
2 files changed, 26 insertions, 0 deletions
diff --git a/manifests/init.pp b/manifests/init.pp index ef83b3e..ef73956 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -26,4 +26,8 @@ class resolvconf { mode => 444, content => template("resolvconf/resolvconf.erb") } + + if $use_shorewall { + include resolvconf::shorewall + } } diff --git a/manifests/shorewall.pp b/manifests/shorewall.pp new file mode 100644 index 0000000..114bda7 --- /dev/null +++ b/manifests/shorewall.pp @@ -0,0 +1,22 @@ +# manifests/shorewall.pp + +class resolvconf::shorewall { + include shorewall + + shorewall::rule { + 'me-net-tcp_dns': + source => '$FW', + destination => 'net', + proto => 'tcp', + destinationport => '53', + order => 250, + action => 'ACCEPT'; + 'me-net-udp_dns': + source => '$FW', + destination => 'net', + proto => 'udp', + destinationport => '53', + order => 251, + action => 'ACCEPT'; + } +} |