diff options
author | kwadronaut <kwadronaut@leap.se> | 2018-11-09 10:03:32 +0100 |
---|---|---|
committer | kwadronaut <kwadronaut@leap.se> | 2018-11-09 10:03:32 +0100 |
commit | 74ebf6e34723573a23bf0e758978fb3969e362f8 (patch) | |
tree | 6abed2eb699e572c418d25d9969b2f4b083a83c0 /manifests/zone.pp | |
parent | 06e89ed3486916ae12186e46b8ec59c8c7c79142 (diff) | |
parent | cabbf434c1778cb4e8fe2f7f726a012f707cd2a5 (diff) |
Diffstat (limited to 'manifests/zone.pp')
-rw-r--r-- | manifests/zone.pp | 34 |
1 files changed, 25 insertions, 9 deletions
diff --git a/manifests/zone.pp b/manifests/zone.pp index 81e5771..8ee1b58 100644 --- a/manifests/zone.pp +++ b/manifests/zone.pp @@ -1,14 +1,30 @@ +# define a zone define shorewall::zone( - $type, - $options = '-', - $in = '-', - $out = '-', - $parent = '-', - $order = 100 + $type, + $options = '-', + $in = '-', + $out = '-', + $parent = '-', + $order = 100, ){ - $real_name = $parent ? { '-' => $name, default => "${name}:${parent}" } - shorewall::entry { "zones-${order}-${name}": - line => "${real_name} ${type} ${options} ${in} ${out}" + $real_name = $parent ? { '-' => $name, default => "${name}:${parent}" } + shorewall::entry { "zones-${order}-${name}": + line => "${real_name} ${type} ${options} ${in} ${out}", + shorewall => true, + shorewall6 => false, + } + if $shorewall::with_shorewall6 { + $type6 = $type ? { + 'ipv4' => 'ipv6', + 'ipsec' => 'ipsec6', + 'bport' => 'bport6', + default => $type, } + shorewall::entry { "zones-${order}-${name}_6": + line => "${real_name} ${type6} ${options} ${in} ${out}", + shorewall => false, + shorewall6 => true, + } + } } |