From 69ffd72ce9e5217ae7d205e04716c40d8c862315 Mon Sep 17 00:00:00 2001
From: Marcel Haerry <haerry@puzzle.ch>
Date: Wed, 16 Sep 2009 17:51:56 +0200
Subject: factored everything out in its own file

---
 manifests/base.pp | 46 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 46 insertions(+)
 create mode 100644 manifests/base.pp

(limited to 'manifests/base.pp')

diff --git a/manifests/base.pp b/manifests/base.pp
new file mode 100644
index 0000000..268815b
--- /dev/null
+++ b/manifests/base.pp
@@ -0,0 +1,46 @@
+class shorewall::base {
+
+        package { 'shorewall':
+        ensure => present,
+    }
+
+    # This file has to be managed in place, so shorewall can find it
+        file { "/etc/shorewall/shorewall.conf":
+                # use OS specific defaults, but use Default if no other is found
+                source => [
+            "puppet://$server/files/shorewall/${fqdn}/shorewall.conf.$operatingsystem",
+            "puppet://$server/files/shorewall/${fqdn}/shorewall.conf",
+            "puppet://$server/files/shorewall/shorewall.conf.$operatingsystem.$lsbdistcodename",
+            "puppet://$server/files/shorewall/shorewall.conf.$operatingsystem",
+            "puppet://$server/files/shorewall/shorewall.conf",
+            "puppet://$server/shorewall/shorewall.conf.$operatingsystem.$lsbdistcodename",
+            "puppet://$server/shorewall/shorewall.conf.$operatingsystem",
+            "puppet://$server/shorewall/shorewall.conf.Default"
+        ],
+                mode => 0644, owner => root, group => 0,
+        require => Package[shorewall],
+        notify => Service[shorewall],
+        }
+
+        service{shorewall:
+        ensure  => running,
+        enable  => true,
+        hasstatus => true,
+        hasrestart => true,
+        subscribe => [
+            Exec["concat_/var/lib/puppet/modules/shorewall/zones"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/interfaces"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/hosts"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/policy"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/rules"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/masq"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/proxyarp"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/nat"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/blacklist"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/rfc1918"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/routestopped"],
+            Exec["concat_/var/lib/puppet/modules/shorewall/params"]
+        ],
+        require => Package[shorewall],
+    }
+}
-- 
cgit v1.2.3