aboutsummaryrefslogtreecommitdiff
path: root/manifests/rules/libvirt
diff options
context:
space:
mode:
Diffstat (limited to 'manifests/rules/libvirt')
-rw-r--r--manifests/rules/libvirt/host.pp14
1 files changed, 11 insertions, 3 deletions
diff --git a/manifests/rules/libvirt/host.pp b/manifests/rules/libvirt/host.pp
index aaecd9d..ac5f045 100644
--- a/manifests/rules/libvirt/host.pp
+++ b/manifests/rules/libvirt/host.pp
@@ -1,6 +1,7 @@
class shorewall::rules::libvirt::host (
- $vmz = 'vmz',
- $masq_iface = 'eth0',
+ $vmz = 'vmz',
+ $masq_iface = 'eth0',
+ $debproxy_port = 8000,
) {
define shorewall::rule::accept::from_vmz (
@@ -33,10 +34,17 @@ class shorewall::rules::libvirt::host (
shorewall::rule::accept::from_vmz {
'accept_dns_from_vmz': action => 'DNS(ACCEPT)';
'accept_tftp_from_vmz': action => 'TFTP(ACCEPT)';
- 'accept_debproxy_from_vmz': proto => 'tcp', destinationport => '8000', action => 'ACCEPT';
'accept_puppet_from_vmz': proto => 'tcp', destinationport => '8140', action => 'ACCEPT';
}
+ if $debproxy_port {
+ shorewall::rule::accept::from_vmz { 'accept_debproxy_from_vmz':
+ proto => 'tcp',
+ destinationport => $debproxy_port,
+ action => 'ACCEPT';
+ }
+ }
+
shorewall::masq {
"masq-${masq_iface}":
interface => "$masq_iface",
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-04 20:47:01 +0000