2 define rule($domain="ip", $chain="INPUT", $rule, $description="", $prio="00") {
3 file { "/etc/ferm/dsa.d/${prio}_${name}":
8 content => template("ferm/ferm-rule.erb"),
9 notify => Exec["ferm restart"],
13 # realize (i.e. enable) all @ferm::rule virtual resources
17 ferm: ensure => installed;
18 ulogd: ensure => installed;
27 source => "puppet:///files/empty/",
28 require => Package["ferm"];
31 require => Package["ferm"];
33 source => "puppet:///ferm/ferm.default",
34 require => Package["ferm"],
35 notify => Exec["ferm restart"];
36 "/etc/ferm/ferm.conf":
37 source => "puppet:///ferm/ferm.conf",
38 require => Package["ferm"],
40 notify => Exec["ferm restart"];
41 "/etc/ferm/conf.d/me.conf":
42 content => template("ferm/me.conf.erb"),
43 require => Package["ferm"],
45 notify => Exec["ferm restart"];
46 "/etc/ferm/conf.d/defs.conf":
47 content => template("ferm/defs.conf.erb"),
48 require => Package["ferm"],
50 notify => Exec["ferm restart"];
51 "/etc/ferm/conf.d/interfaces.conf":
52 content => template("ferm/interfaces.conf.erb"),
53 require => Package["ferm"],
55 notify => Exec["ferm restart"];
58 $munin_ips = split(regsubst($v4ips, '([^,]+)', 'ip_\1', 'G'), ',')
60 activate_munin_check {
61 $munin_ips: script => "ip_";
64 exec { "ferm restart":
65 command => "/etc/init.d/ferm restart",