put nfs-server in main manifest

[dsa-puppet.git] / modules / ferm / manifests / per-host.pp

diff --git a/modules/ferm/manifests/per-host.pp b/modules/ferm/manifests/per-host.pp
index fcf17f241e9aa87e919da4228e8683b49e6f9789..a711c07f4ca36771ce70c0addb95214d854a7590 100644 (file)
--- a/modules/ferm/manifests/per-host.pp
+++ b/modules/ferm/manifests/per-host.pp
@@ -6,25 +6,35 @@ class ferm::per-host {
         }
     }
     case $hostname {
-        franck,gluck,kaufmann,klecker,lobos,morricone,raff,ries,rietz,saens,schein,senfl,steffani,valente,villa,wieck: {
+        franck,gluck,kaufmann,kassia,klecker,lobos,morricone,raff,ries,rietz,saens,schein,senfl,steffani,valente,villa,wieck: {
            include ferm::rsync
         }
     }
 
     case $hostname {
-        chopin,saens,villa,lobos,raff,gluck,schein,wieck,steffani,ries,rietz,franck,morricone,valente,klecker: {
+        chopin,franck,gluck,kassia,klecker,lobos,morricone,ravel,raff,ries,rietz,saens,schein,steffani,valente,villa,wieck: {
            include ferm::ftp
         }
     }
 
     case $hostname {
-        piatti: {
+        piatti,samosa: {
            @ferm::rule { "dsa-udd-stunnel":
                description  => "port 8080 for udd stunnel",
                rule         => "&SERVICE_RANGE(tcp, http-alt, ( 192.25.206.16 70.103.162.29 217.196.43.134 ))"
            }
         }
 
+        paganini: {
+           @ferm::rule { "dsa-dhcp":
+                   description     => "Allow dhcp access",
+                   rule            => "&SERVICE(udp, 67)"
+          }
+           @ferm::rule { "dsa-tftp":
+                   description     => "Allow tftp access",
+                   rule            => "&SERVICE(udp, 69)"
+          }
+        }
         handel: {
           @ferm::rule { "dsa-puppet":
                    description     => "Allow puppet access",