manifests/rules/jabberserver.pp


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34

# open ports used by a jabberserver
# in and outbound.
class shorewall::rules::jabberserver(
  $open_stun = true,
) {
  shorewall::rule {
    'net-me-tcp_jabber':
        source          => 'net',
        destination     => '$FW',
        proto           => 'tcp',
        destinationport => '5222,5223,5269',
        order           => 240,
        action          => 'ACCEPT';
    'me-net-tcp_jabber_s2s':
        source          => '$FW',
        destination     => 'net',
        proto           => 'tcp',
        destinationport => '5260,5269,5270,5271,5272',
        order           => 240,
        action          => 'ACCEPT';
  }

  if $open_stun {
    shorewall::rule {
      'net-me-udp_jabber_stun_server':
        source          => 'net',
        destination     => '$FW',
        proto           => 'udp',
        destinationport => '3478',
        order           => 240,
        action          => 'ACCEPT';
    }
  }
}