3 ssl::service { 'www.debian.org':
6 ssl::service { 'sip-ws.debian.org':
9 @ferm::rule { 'dsa-xmpp-client-ip4':
11 description => 'XMPP connections (client to server)',
12 rule => 'proto tcp dport (5222) ACCEPT'
14 @ferm::rule { 'dsa-xmpp-client-ip6':
16 description => 'XMPP connections (client to server)',
17 rule => 'proto tcp dport (5222) ACCEPT'
19 @ferm::rule { 'dsa-xmpp-server-ip4':
21 description => 'XMPP connections (server to server)',
22 rule => 'proto tcp dport (5269) ACCEPT'
24 @ferm::rule { 'dsa-xmpp-server-ip6':
26 description => 'XMPP connections (server to server)',
27 rule => 'proto tcp dport (5269) ACCEPT'
30 @ferm::rule { 'dsa-sip-ws-ip4':
32 description => 'SIP connections (WebSocket; for WebRTC)',
33 rule => 'proto tcp dport (443) ACCEPT'
35 @ferm::rule { 'dsa-sip-ws-ip6':
37 description => 'SIP connections (WebSocket; for WebRTC)',
38 rule => 'proto tcp dport (443) ACCEPT'
40 @ferm::rule { 'dsa-sip-tls-ip4':
42 description => 'SIP connections (TLS)',
43 rule => 'proto tcp dport (5061) ACCEPT'
45 @ferm::rule { 'dsa-sip-tls-ip6':
47 description => 'SIP connections (TLS)',
48 rule => 'proto tcp dport (5061) ACCEPT'
50 @ferm::rule { 'dsa-turn-ip4':
52 description => 'TURN connections',
53 rule => 'proto udp dport (3478) ACCEPT'
55 @ferm::rule { 'dsa-turn-ip6':
57 description => 'TURN connections',
58 rule => 'proto udp dport (3478) ACCEPT'
60 @ferm::rule { 'dsa-turn-tls-ip4':
62 description => 'TURN connections (TLS)',
63 rule => 'proto tcp dport (5349) ACCEPT'
65 @ferm::rule { 'dsa-turn-tls-ip6':
67 description => 'TURN connections (TLS)',
68 rule => 'proto tcp dport (5349) ACCEPT'
70 @ferm::rule { 'dsa-rtp-ip4':
72 description => 'RTP streams',
73 rule => 'proto udp dport (49152:65535) ACCEPT'
75 @ferm::rule { 'dsa-rtp-ip6':
77 description => 'RTP streams',
78 rule => 'proto udp dport (49152:65535) ACCEPT'
81 file { '/etc/monit/monit.d/50rtc':