From b0e1e4c82db3c70ddc67639a9b983de89b415477 Mon Sep 17 00:00:00 2001
From: Micah <micah@leap.se>
Date: Tue, 24 May 2016 10:19:26 -0400
Subject: Squashed 'puppet/modules/shorewall/' content from commit 34fbca6

git-subtree-dir: puppet/modules/shorewall
git-subtree-split: 34fbca68d478c2edd5f13e74245cf675b5b53303
---
 manifests/rules/out/puppet.pp | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 manifests/rules/out/puppet.pp

(limited to 'manifests/rules/out/puppet.pp')

diff --git a/manifests/rules/out/puppet.pp b/manifests/rules/out/puppet.pp
new file mode 100644
index 00000000..cbe8cce7
--- /dev/null
+++ b/manifests/rules/out/puppet.pp
@@ -0,0 +1,20 @@
+class shorewall::rules::out::puppet(
+  $puppetserver = "puppet.${::domain}",
+  $puppetserver_port = 8140,
+  $puppetserver_signport = 8141
+) {
+  class{'shorewall::rules::puppet':
+    puppetserver          => $puppetserver,
+    puppetserver_port     => $puppetserver_port,
+    puppetserver_signport => $puppetserver_signport,
+  }
+  # we want to connect to the puppet server
+  shorewall::rule { 'me-net-puppet_tcp':
+    source          =>      '$FW',
+    destination     =>      'net:$PUPPETSERVER',
+    proto           =>      'tcp',
+    destinationport =>      '$PUPPETSERVER_PORT,$PUPPETSERVER_SIGN_PORT',
+    order           =>      340,
+    action          =>      'ACCEPT';
+  }
+}
-- 
cgit v1.2.3