manifests/rules/torify/non_torified_user.pp


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25

define shorewall::rules::torify::non_torified_user() {

  $user = $name

  $whitelist_rule = "allow-from-user=${user}"
  shorewall::rule {
    "$whitelist_rule":
      source      => '$FW',
      destination => 'all',
      user        => $user,
      order       => 101,
      action      => 'ACCEPT';
  }

  $nonat_rule = "dont-redirect-to-tor-user=${user}"
  shorewall::rule {
    "$nonat_rule":
      source       => '$FW',
      destination  => '-',
      user         => $user,
      order        => 106,
      action       => 'NONAT';
  }

}