2 define rule($domain="ip", $chain="INPUT", $rule, $description="", $prio="00") {
4 "/etc/ferm/dsa.d/${prio}_${name}":
9 content => template("ferm/ferm-rule.erb"),
10 notify => Exec["ferm restart"],
14 # realize (i.e. enable) all @ferm::rule virtual resources
18 ferm: ensure => installed;
19 ulogd: ensure => installed;
28 source => "puppet:///files/empty/",
29 require => Package["ferm"];
32 require => Package["ferm"];
34 source => "puppet:///ferm/ferm.default",
35 require => Package["ferm"],
36 notify => Exec["ferm restart"];
37 "/etc/ferm/ferm.conf":
38 source => "puppet:///ferm/ferm.conf",
39 require => Package["ferm"],
41 notify => Exec["ferm restart"];
42 "/etc/ferm/conf.d/me.conf":
43 content => template("ferm/me.conf.erb"),
44 require => Package["ferm"],
46 notify => Exec["ferm restart"];
47 "/etc/ferm/conf.d/defs.conf":
48 content => template("ferm/defs.conf.erb"),
49 require => Package["ferm"],
51 notify => Exec["ferm restart"];
52 "/etc/ferm/conf.d/interfaces.conf":
53 content => template("ferm/interfaces.conf.erb"),
54 require => Package["ferm"],
56 notify => Exec["ferm restart"];
57 "/etc/logrotate.d/ulogd":
58 source => "puppet:///ferm/logrotate-ulogd",
59 require => Package["logrotate"],
63 $munin_ips = split(regsubst($v4ips, '([^,]+)', 'ip_\1', 'G'), ',')
65 activate_munin_check {
66 $munin_ips: script => "ip_";
69 case extractnodeinfo($nodeinfo, 'buildd') {
72 "/etc/ferm/conf.d/load_ftp_conntrack.conf":
73 source => "puppet:///ferm/conntrack_ftp.conf",
74 require => Package["ferm"],
75 notify => Exec["ferm restart"];
83 $munin6_ips = split(regsubst($v6ips, '([^,]+)', 'ip6_\1', 'G'), ',')
84 activate_munin_check {
85 $munin6_ips: script => "ip6_";
92 command => "/etc/init.d/ferm restart",
98 # vim:set shiftwidth=4: