ferm: allow debsources access

author Héctor Orón Martínez <zumbi@debian.org>

Sun, 7 Dec 2014 17:10:41 +0000 (18:10 +0100)

committer Héctor Orón Martínez <zumbi@debian.org>

Sun, 7 Dec 2014 17:10:41 +0000 (18:10 +0100)
author Héctor Orón Martínez <zumbi@debian.org>
Sun, 7 Dec 2014 17:10:41 +0000 (18:10 +0100)
committer Héctor Orón Martínez <zumbi@debian.org>
Sun, 7 Dec 2014 17:10:41 +0000 (18:10 +0100)
diff --git a/modules/ferm/manifests/per-host.pp b/modules/ferm/manifests/per-host.pp

index 5d28d60913169869e8da89eaac487266406d2a8e..21ff820c48787c330e578031677c064aec5145cb 100644 (file)
--- a/modules/ferm/manifests/per-host.pp
+++ b/modules/ferm/manifests/per-host.pp
@@ -324,6 +324,16 @@ class ferm::per-host {
                                 description     => 'Allow postgress access',
                                 rule            => '&SERVICE_RANGE(tcp, (5439), ( 2001:41c8:1000:21::21:17/128 ))'
                         }
+
+                       @ferm::rule { 'dsa-postgres-debsources':
+                               description     => 'Allow postgress access',
+                               rule            => '&SERVICE_RANGE(tcp, (5440), ( 5.153.231.38/32 ))'
+                       }
+                       @ferm::rule { 'dsa-postgres-debsources6':
+                               domain          => 'ip6',
+                               description     => 'Allow postgress access',
+                               rule            => '&SERVICE_RANGE(tcp, (5440), ( 2001:41c8:1000:21::21:38/128 ))'
+                       }
                 }
                 danzi: {
                         @ferm::rule { 'dsa-postgres-danzi':
author	Héctor Orón Martínez <zumbi@debian.org>
	Sun, 7 Dec 2014 17:10:41 +0000 (18:10 +0100)
committer	Héctor Orón Martínez <zumbi@debian.org>
	Sun, 7 Dec 2014 17:10:41 +0000 (18:10 +0100)