postgresql access to franck from replica

author Peter Palfrader <peter@palfrader.org>

Sat, 6 Jul 2013 17:07:05 +0000 (19:07 +0200)

committer Peter Palfrader <peter@palfrader.org>

Sat, 6 Jul 2013 17:07:05 +0000 (19:07 +0200)
author Peter Palfrader <peter@palfrader.org>
Sat, 6 Jul 2013 17:07:05 +0000 (19:07 +0200)
committer Peter Palfrader <peter@palfrader.org>
Sat, 6 Jul 2013 17:07:05 +0000 (19:07 +0200)
diff --git a/modules/ferm/manifests/per-host.pp b/modules/ferm/manifests/per-host.pp

index ea6e497623fc29dbcf929b9b57a0de2b464a3baa..a459169f4cf27f57b9cd1e43b7e5580d59b7e4d5 100644 (file)
--- a/modules/ferm/manifests/per-host.pp
+++ b/modules/ferm/manifests/per-host.pp
@@ -62,6 +62,17 @@ class ferm::per-host {
                                 rule            => 'destination 78.8.208.246/32 proto tcp dport 25 jump DROP',
                         }
                 }
+               franck: {
+                       @ferm::rule { 'dsa-postgres-danzi':
+                               description     => 'Allow postgress access',
+                               rule            => '&SERVICE_RANGE(tcp, 5433, ( 5.153.231.10/32 ))'
+                       }
+                       @ferm::rule { 'dsa-postgres-danzi6':
+                               domain          => 'ip6',
+                               description     => 'Allow postgress access',
+                               rule            => '&SERVICE_RANGE(tcp, 5433, ( 2001:41c8:1000:21::21:10/128 ))'
+                       }
+               }
                 danzi: {
                         @ferm::rule { 'dsa-postgres-danzi':
                                 description     => 'Allow postgress access',
author	Peter Palfrader <peter@palfrader.org>
	Sat, 6 Jul 2013 17:07:05 +0000 (19:07 +0200)
committer	Peter Palfrader <peter@palfrader.org>
	Sat, 6 Jul 2013 17:07:05 +0000 (19:07 +0200)