aboutsummaryrefslogtreecommitdiff
path: root/manifests/rules
diff options
context:
space:
mode:
authoro <o@immerda.ch>2011-04-26 01:13:58 +0200
committerMicah Anderson <micah@riseup.net>2011-06-21 12:15:45 -0400
commite27f9a83ed912eeef399878e7a8a3c77035b53de (patch)
tree8626314af8ec38fb029a6dc32c9faa38dd9f8b2d /manifests/rules
parent19e70974a098d235dcad5014652600ee8fc0e84d (diff)
downloadpuppet-shorewall-e27f9a83ed912eeef399878e7a8a3c77035b53de.tar.gz
puppet-shorewall-e27f9a83ed912eeef399878e7a8a3c77035b53de.tar.bz2
added ipsec rule
Diffstat (limited to 'manifests/rules')
-rw-r--r--manifests/rules/ipsec.pp18
1 files changed, 18 insertions, 0 deletions
diff --git a/manifests/rules/ipsec.pp b/manifests/rules/ipsec.pp
new file mode 100644
index 0000000..c609d0a
--- /dev/null
+++ b/manifests/rules/ipsec.pp
@@ -0,0 +1,18 @@
+class shorewall::rules::ipsec {
+ shorewall::rule { 'net-me-ipsec-udp':
+ source => 'net',
+ destination => '$FW',
+ proto => 'udp',
+ destinationport => '500',
+ order => 240,
+ action => 'ACCEPT';
+ }
+ shorewall::rule { 'me-net-ipsec-udp':
+ source => '$FW',
+ destination => 'net',
+ proto => 'udp',
+ destinationport => '500',
+ order => 240,
+ action => 'ACCEPT';
+ }
+}