manage new and legacy ports of managesieve

author: mh <mh@immerda.ch> 2013-09-28 15:16:21 +0200
committer: mh <mh@immerda.ch> 2015-12-05 11:34:54 +0100
commit: 589f32d74a791138277583ed57c05e581a073c58 (patch)
tree: 3bfc6050e77514e72883e09fb562f370d42c6bf1
parent: b962d72a0b3004805c333e2417018bde487ed956 (diff)
download: puppet-shorewall-589f32d74a791138277583ed57c05e581a073c58.tar.gz
puppet-shorewall-589f32d74a791138277583ed57c05e581a073c58.tar.bz2
2 files changed, 44 insertions, 16 deletions
diff --git a/manifests/rules/managesieve.pp b/manifests/rules/managesieve.pp
index 63fafcb..ce1c321 100644
--- a/manifests/rules/managesieve.pp
+++ b/manifests/rules/managesieve.pp
@@ -1,11 +1,25 @@
-class shorewall::rules::managesieve {
+# manage managesieve ports
+class shorewall::rules::managesieve(
+  $legacy_port = false,
+) {
+  shorewall::rule {
+    'net-me-tcp_managesieve':
+      source          =>      'net',
+      destination     =>      '$FW',
+      proto           =>      'tcp',
+      destinationport =>      '4190',
+      order           =>      260,
+      action          =>      'ACCEPT';
+  }
+  if $legacy_port {
     shorewall::rule {
-        'net-me-tcp_managesieve':
-            source          =>      'net',
-            destination     =>      '$FW',
-            proto           =>      'tcp',
-            destinationport =>      '2000',
-            order           =>      260,
-            action          =>      'ACCEPT';
+      'net-me-tcp_managesieve_legacy':
+        source          =>      'net',
+        destination     =>      '$FW',
+        proto           =>      'tcp',
+        destinationport =>      '2000',
+        order           =>      260,
+        action          =>      'ACCEPT';
     }
+  }
 }
diff --git a/manifests/rules/out/managesieve.pp b/manifests/rules/out/managesieve.pp
index b0e1c3d..c4147d4 100644
--- a/manifests/rules/out/managesieve.pp
+++ b/manifests/rules/out/managesieve.pp
@@ -1,11 +1,25 @@
-class shorewall::rules::out::managesieve {
+# manage outgoing traffic to managesieve
+class shorewall::rules::out::managesieve(
+  $legacy_port = false
+) {
+  shorewall::rule {
+    'me-net-tcp_managesieve':
+      source          =>      '$FW',
+      destination     =>      'net',
+      proto           =>      'tcp',
+      destinationport =>      '4190',
+      order           =>      260,
+      action          =>      'ACCEPT';
+  }
+  if $legacy_port {
     shorewall::rule {
-        'me-net-tcp_managesieve':
-            source          =>      '$FW',
-            destination     =>      'net',
-            proto           =>      'tcp',
-            destinationport =>      '2000',
-            order           =>      260,
-            action          =>      'ACCEPT';
+      'me-net-tcp_managesieve_legacy':
+        source          =>      '$FW',
+        destination     =>      'net',
+        proto           =>      'tcp',
+        destinationport =>      '2000',
+        order           =>      260,
+        action          =>      'ACCEPT';
     }
+  }
 }
author	mh <mh@immerda.ch>	2013-09-28 15:16:21 +0200
committer	mh <mh@immerda.ch>	2015-12-05 11:34:54 +0100
commit	589f32d74a791138277583ed57c05e581a073c58 (patch)
tree	3bfc6050e77514e72883e09fb562f370d42c6bf1
parent	b962d72a0b3004805c333e2417018bde487ed956 (diff)
download	puppet-shorewall-589f32d74a791138277583ed57c05e581a073c58.tar.gz puppet-shorewall-589f32d74a791138277583ed57c05e581a073c58.tar.bz2