make it easier to override behaviour of the dns rules

author: mh <mh@immerda.ch> 2013-08-25 18:44:45 +0200
committer: mh <mh@immerda.ch> 2013-08-25 18:44:45 +0200
commit: 35a8902dadc1460c463c8ae826cf5a0267f6a6cf (patch)
tree: 4737fd66b3c78f76a9d83745d0a00fa6e95c8eab /manifests/rules/dns.pp
parent: 4d0f1855f2538a59a4fa59a8b7c101ebaa5d2280 (diff)
1 files changed, 4 insertions, 16 deletions
diff --git a/manifests/rules/dns.pp b/manifests/rules/dns.pp
index 99311ca..e775eee 100644
--- a/manifests/rules/dns.pp
+++ b/manifests/rules/dns.pp
@@ -1,18 +1,6 @@
+# open dns port
 class shorewall::rules::dns {
-    shorewall::rule {
-        'net-me-tcp_dns':
-                        source          =>      'net',
-                        destination     =>      '$FW',
-                        proto           =>      'tcp',
-                        destinationport =>      '53',
-                        order           =>      240,
-                        action          =>      'ACCEPT';
-        'net-me-udp_dns':
-                        source          =>      'net',
-                        destination     =>      '$FW',
-                        proto           =>      'udp',
-                        destinationport =>      '53',
-                        order           =>      240,
-                        action          =>      'ACCEPT';
-    }
+  shorewall::rules::dns_rules{
+    'net':
+  }
 }
author	mh <mh@immerda.ch>	2013-08-25 18:44:45 +0200
committer	mh <mh@immerda.ch>	2013-08-25 18:44:45 +0200
commit	35a8902dadc1460c463c8ae826cf5a0267f6a6cf (patch)
tree	4737fd66b3c78f76a9d83745d0a00fa6e95c8eab /manifests/rules/dns.pp
parent	4d0f1855f2538a59a4fa59a8b7c101ebaa5d2280 (diff)