1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
# outgoing puppet traffic
class shorewall::rules::out::puppet(
$puppetserver = "puppet.${::domain}",
$puppetserver_port = 8140,
$puppetserver_signport = 8141,
$shorewall6 = true,
) {
class{'shorewall::rules::puppet':
puppetserver => $puppetserver,
puppetserver_port => $puppetserver_port,
puppetserver_signport => $puppetserver_signport,
shorewall6 => $shorewall6,
}
# we want to connect to the puppet server
shorewall::rule { 'me-net-puppet_tcp':
source => '$FW',
destination => 'net:$PUPPETSERVER',
proto => 'tcp',
destinationport => '$PUPPETSERVER_PORT,$PUPPETSERVER_SIGN_PORT',
order => 340,
shorewall6 => $shorewall6,
action => 'ACCEPT';
}
}
|
