diff options
author | Marcel Haerry <haerry@puzzle.ch> | 2009-09-16 17:51:56 +0200 |
---|---|---|
committer | Micah Anderson <micah@riseup.net> | 2009-12-07 11:33:26 -0500 |
commit | 69ffd72ce9e5217ae7d205e04716c40d8c862315 (patch) | |
tree | 36dfb4eb635bd065396b6a4595df217a2d9c1a3b /manifests/base.pp | |
parent | e972b9abde01a6d89579e20fe4b038c7cbfe0c45 (diff) | |
download | puppet-shorewall-69ffd72ce9e5217ae7d205e04716c40d8c862315.tar.gz puppet-shorewall-69ffd72ce9e5217ae7d205e04716c40d8c862315.tar.bz2 |
factored everything out in its own file
Diffstat (limited to 'manifests/base.pp')
-rw-r--r-- | manifests/base.pp | 46 |
1 files changed, 46 insertions, 0 deletions
diff --git a/manifests/base.pp b/manifests/base.pp new file mode 100644 index 0000000..268815b --- /dev/null +++ b/manifests/base.pp @@ -0,0 +1,46 @@ +class shorewall::base { + + package { 'shorewall': + ensure => present, + } + + # This file has to be managed in place, so shorewall can find it + file { "/etc/shorewall/shorewall.conf": + # use OS specific defaults, but use Default if no other is found + source => [ + "puppet://$server/files/shorewall/${fqdn}/shorewall.conf.$operatingsystem", + "puppet://$server/files/shorewall/${fqdn}/shorewall.conf", + "puppet://$server/files/shorewall/shorewall.conf.$operatingsystem.$lsbdistcodename", + "puppet://$server/files/shorewall/shorewall.conf.$operatingsystem", + "puppet://$server/files/shorewall/shorewall.conf", + "puppet://$server/shorewall/shorewall.conf.$operatingsystem.$lsbdistcodename", + "puppet://$server/shorewall/shorewall.conf.$operatingsystem", + "puppet://$server/shorewall/shorewall.conf.Default" + ], + mode => 0644, owner => root, group => 0, + require => Package[shorewall], + notify => Service[shorewall], + } + + service{shorewall: + ensure => running, + enable => true, + hasstatus => true, + hasrestart => true, + subscribe => [ + Exec["concat_/var/lib/puppet/modules/shorewall/zones"], + Exec["concat_/var/lib/puppet/modules/shorewall/interfaces"], + Exec["concat_/var/lib/puppet/modules/shorewall/hosts"], + Exec["concat_/var/lib/puppet/modules/shorewall/policy"], + Exec["concat_/var/lib/puppet/modules/shorewall/rules"], + Exec["concat_/var/lib/puppet/modules/shorewall/masq"], + Exec["concat_/var/lib/puppet/modules/shorewall/proxyarp"], + Exec["concat_/var/lib/puppet/modules/shorewall/nat"], + Exec["concat_/var/lib/puppet/modules/shorewall/blacklist"], + Exec["concat_/var/lib/puppet/modules/shorewall/rfc1918"], + Exec["concat_/var/lib/puppet/modules/shorewall/routestopped"], + Exec["concat_/var/lib/puppet/modules/shorewall/params"] + ], + require => Package[shorewall], + } +} |