include ferm::zivit
}
+ if $::hostname in [klecker,merikanto,powell,ravel,rietz,senfl,sibelius,stabile] {
+ ferm::rule { 'dsa-rsync':
+ domain => '(ip ip6)',
+ description => 'Allow rsync access',
+ rule => '&SERVICE(tcp, 873)'
+ }
+ }
+
case $::hostname {
piatti,samosa: {
@ferm::rule { 'dsa-udd-stunnel':
rule => '&SERVICE_RANGE(tcp, 5437, ( 206.12.19.0/24 ))'
}
@ferm::rule { 'dsa-postgres3-danzi':
- description => 'Allow postgress access2',
+ description => 'Allow postgress access3',
rule => '&SERVICE_RANGE(tcp, 5436, ( 206.12.19.0/24 ))'
}
+ @ferm::rule { 'dsa-postgres3-danzi':
+ description => 'Allow postgress access4',
+ rule => '&SERVICE_RANGE(tcp, 5438, ( 206.12.19.0/24 ))'
+ }
}
abel,alwyn,rietz: {
@ferm::rule { 'dsa-tftp':
default: {}
}
- if $::rsyncd {
- include ferm::rsync
- }
}