From 9792e035af468e33ec4dd85be3d68f408a41b768 Mon Sep 17 00:00:00 2001
From: Micah Anderson <micah@riseup.net>
Date: Mon, 5 Jan 2015 15:37:19 -0500
Subject: add custom puppet manifests to add munin to the openvpn nodes so we
 can get data on traffic/vpn usage for reporting purposes

---
 .../custom_shorewall/manifests/munin_node.pp       | 23 ++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 files/puppet/modules/custom_shorewall/manifests/munin_node.pp

(limited to 'files/puppet/modules/custom_shorewall/manifests/munin_node.pp')

diff --git a/files/puppet/modules/custom_shorewall/manifests/munin_node.pp b/files/puppet/modules/custom_shorewall/manifests/munin_node.pp
new file mode 100644
index 0000000..ab9799b
--- /dev/null
+++ b/files/puppet/modules/custom_shorewall/manifests/munin_node.pp
@@ -0,0 +1,23 @@
+# Shorewall munin rules
+class custom_shorewall::munin_node {
+
+  include site_shorewall::defaults
+  include site_shorewall::ip_forward
+
+  $node_port = '4949'
+
+  # define macro for incoming services
+  file { '/etc/shorewall/macro.munin_node':
+    content => "PARAM   -       -       tcp    ${node_port} ",
+    notify  => Service['shorewall'],
+    require => Package['shorewall']
+  }
+
+  shorewall::rule {
+      'net2fw-munin_node':
+        source      => 'net',
+        destination => '$FW',
+        action      => 'munin_node(ACCEPT)',
+        order       => 200;
+  }
+}
-- 
cgit v1.2.3