diff options
| author | varac <varacanero@zeromail.org> | 2016-06-13 20:37:21 +0200 |
|---|---|---|
| committer | varac <varacanero@zeromail.org> | 2016-06-13 20:37:21 +0200 |
| commit | 06e89ed3486916ae12186e46b8ec59c8c7c79142 (patch) | |
| tree | b82b60b4390763c7d805a37e40b67319641671c3 /manifests/rules/jabberserver.pp | |
| parent | 34fbca68d478c2edd5f13e74245cf675b5b53303 (diff) | |
| parent | f560a426885f0982cae39495321222158a69e895 (diff) | |
Merge remote-tracking branch 'shared/master' into leap_master
Diffstat (limited to 'manifests/rules/jabberserver.pp')
| -rw-r--r-- | manifests/rules/jabberserver.pp | 41 |
1 files changed, 28 insertions, 13 deletions
diff --git a/manifests/rules/jabberserver.pp b/manifests/rules/jabberserver.pp index 3b38b29..226d627 100644 --- a/manifests/rules/jabberserver.pp +++ b/manifests/rules/jabberserver.pp @@ -1,19 +1,34 @@ -class shorewall::rules::jabberserver { +# open ports used by a jabberserver +# in and outbound. +class shorewall::rules::jabberserver( + $open_stun = true, +) { shorewall::rule { 'net-me-tcp_jabber': - source => 'net', - destination => '$FW', - proto => 'tcp', - destinationport => '5222,5223,5269', - order => 240, - action => 'ACCEPT'; + source => 'net', + destination => '$FW', + proto => 'tcp', + destinationport => '5222,5223,5269', + order => 240, + action => 'ACCEPT'; 'me-net-tcp_jabber_s2s': - source => '$FW', - destination => 'net', - proto => 'tcp', - destinationport => '5260,5269,5270,5271,5272', - order => 240, - action => 'ACCEPT'; + source => '$FW', + destination => 'net', + proto => 'tcp', + destinationport => '5260,5269,5270,5271,5272', + order => 240, + action => 'ACCEPT'; } + if $open_stun { + shorewall::rule { + 'net-me-udp_jabber_stun_server': + source => 'net', + destination => '$FW', + proto => 'udp', + destinationport => '3478', + order => 240, + action => 'ACCEPT'; + } + } } |