1 class roles::ftp_master {
2 rsync::site { 'dakmaster':
3 source => 'puppet:///modules/roles/dakmaster/rsyncd.conf',
4 # Needs to be at least number of direct mirrors plus some spare
6 sslname => 'ftp-master.debian.org',
9 ssl::service { 'ftp-master.debian.org':
10 notify => Exec['service apache2 reload'],
12 tlsaport => [443, 1873],
15 # export ssh allow rules for hosts that we should be able to access
16 @@ferm::rule::simple { "dsa-ssh-from-ftp_master-${::fqdn}":
17 tag => 'ssh::server::from::ftp_master',
18 description => 'Allow ssh access from ftp_master',
20 saddr => $base::public_addresses,