From 1a63c1290e75da579580047f943b9169bbf3ebb2 Mon Sep 17 00:00:00 2001
From: Martin Zobel-Helas <zobel@debian.org>
Date: Fri, 18 Jun 2010 18:25:27 +0200
Subject: [PATCH] add tcp port for remote syslog

Signed-off-by: Martin Zobel-Helas <zobel@debian.org>
---
 manifests/site.pp | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/manifests/site.pp b/manifests/site.pp
index 06e6cc49..59bcf74d 100644
--- a/manifests/site.pp
+++ b/manifests/site.pp
@@ -167,6 +167,17 @@ node default {
 		    rule            => "source 172.22.127.147 interface bond0 jump ACCEPT",
 	   }
 	}
+        heininen: {
+	   @ferm::rule { "dsa-puppet":
+		    description     => "Allow syslog access",
+		    rule            => "&SERVICE_RANGE(tcp, 5140, \$HOST_DEBIAN_V4)"
+	   }
+	   @ferm::rule { "dsa-puppet-v6":
+		    domain          => 'ip6',
+		    description     => "Allow syslog access",
+		    rule            => "&SERVICE_RANGE(tcp, 5140, \$HOST_DEBIAN_V6)"
+	   }
+        }
 
     }
     case $brokenhosts {
-- 
2.39.2