From 1a63c1290e75da579580047f943b9169bbf3ebb2 Mon Sep 17 00:00:00 2001 From: Martin Zobel-Helas Date: Fri, 18 Jun 2010 18:25:27 +0200 Subject: [PATCH] add tcp port for remote syslog Signed-off-by: Martin Zobel-Helas --- manifests/site.pp | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/manifests/site.pp b/manifests/site.pp index 06e6cc49..59bcf74d 100644 --- a/manifests/site.pp +++ b/manifests/site.pp @@ -167,6 +167,17 @@ node default { rule => "source 172.22.127.147 interface bond0 jump ACCEPT", } } + heininen: { + @ferm::rule { "dsa-puppet": + description => "Allow syslog access", + rule => "&SERVICE_RANGE(tcp, 5140, \$HOST_DEBIAN_V4)" + } + @ferm::rule { "dsa-puppet-v6": + domain => 'ip6', + description => "Allow syslog access", + rule => "&SERVICE_RANGE(tcp, 5140, \$HOST_DEBIAN_V6)" + } + } } case $brokenhosts { -- 2.39.2