diff options
| author | intrigeri <intrigeri@boum.org> | 2013-02-09 16:34:22 +0100 |
|---|---|---|
| committer | intrigeri <intrigeri@boum.org> | 2013-02-09 16:34:22 +0100 |
| commit | 8d67336fc4a8cea5dcb733153d51881b8ffed560 (patch) | |
| tree | a121a507ff24f982b835ecc36d179c2c5ef052ee /manifests/rules/libvirt | |
| parent | 00783476d162088eaf7a15a287316c2233ae5465 (diff) | |
| download | puppet-shorewall-8d67336fc4a8cea5dcb733153d51881b8ffed560.tar.gz puppet-shorewall-8d67336fc4a8cea5dcb733153d51881b8ffed560.tar.bz2 | |
libvirt::host: make debproxy port configurable.
Diffstat (limited to 'manifests/rules/libvirt')
| -rw-r--r-- | manifests/rules/libvirt/host.pp | 14 |
1 files changed, 11 insertions, 3 deletions
diff --git a/manifests/rules/libvirt/host.pp b/manifests/rules/libvirt/host.pp index aaecd9d..ac5f045 100644 --- a/manifests/rules/libvirt/host.pp +++ b/manifests/rules/libvirt/host.pp @@ -1,6 +1,7 @@ class shorewall::rules::libvirt::host ( - $vmz = 'vmz', - $masq_iface = 'eth0', + $vmz = 'vmz', + $masq_iface = 'eth0', + $debproxy_port = 8000, ) { define shorewall::rule::accept::from_vmz ( @@ -33,10 +34,17 @@ class shorewall::rules::libvirt::host ( shorewall::rule::accept::from_vmz { 'accept_dns_from_vmz': action => 'DNS(ACCEPT)'; 'accept_tftp_from_vmz': action => 'TFTP(ACCEPT)'; - 'accept_debproxy_from_vmz': proto => 'tcp', destinationport => '8000', action => 'ACCEPT'; 'accept_puppet_from_vmz': proto => 'tcp', destinationport => '8140', action => 'ACCEPT'; } + if $debproxy_port { + shorewall::rule::accept::from_vmz { 'accept_debproxy_from_vmz': + proto => 'tcp', + destinationport => $debproxy_port, + action => 'ACCEPT'; + } + } + shorewall::masq { "masq-${masq_iface}": interface => "$masq_iface", |