2 define rule($domain="ip", $chain="INPUT", $rule, $description="", $prio="00") {
4 "/etc/ferm/dsa.d/${prio}_${name}":
9 content => template("ferm/ferm-rule.erb"),
10 notify => Exec["ferm restart"],
14 # realize (i.e. enable) all @ferm::rule virtual resources
18 ferm: ensure => installed;
19 ulogd: ensure => installed;
28 source => "puppet:///files/empty/",
29 require => Package["ferm"];
35 require => Package["ferm"];
37 source => "puppet:///ferm/ferm.default",
38 require => Package["ferm"],
39 notify => Exec["ferm restart"];
40 "/etc/ferm/ferm.conf":
41 source => "puppet:///ferm/ferm.conf",
42 require => Package["ferm"],
44 notify => Exec["ferm restart"];
45 "/etc/ferm/conf.d/me.conf":
46 content => template("ferm/me.conf.erb"),
47 require => Package["ferm"],
49 notify => Exec["ferm restart"];
50 "/etc/ferm/conf.d/defs.conf":
51 content => template("ferm/defs.conf.erb"),
52 require => Package["ferm"],
54 notify => Exec["ferm restart"];
55 "/etc/ferm/conf.d/interfaces.conf":
56 content => template("ferm/interfaces.conf.erb"),
57 require => Package["ferm"],
59 notify => Exec["ferm restart"];
60 "/etc/logrotate.d/ulogd":
61 source => "puppet:///ferm/logrotate-ulogd",
62 require => Package["logrotate"],
66 $munin_ips = split(regsubst($v4ips, '([^,]+)', 'ip_\1', 'G'), ',')
68 activate_munin_check {
69 $munin_ips: script => "ip_";
72 case extractnodeinfo($nodeinfo, 'buildd') {
75 "/etc/ferm/conf.d/load_ftp_conntrack.conf":
76 source => "puppet:///ferm/conntrack_ftp.conf",
77 require => Package["ferm"],
78 notify => Exec["ferm restart"];
86 $munin6_ips = split(regsubst($v6ips, '([^,]+)', 'ip6_\1', 'G'), ',')
87 activate_munin_check {
88 $munin6_ips: script => "ip6_";
95 command => "/etc/init.d/ferm restart",
100 # vim:set sts=4 ts=4:
101 # vim:set shiftwidth=4: