3 # This class installs ferm and sets up rules
10 # realize (i.e. enable) all @ferm::rule virtual resources
14 File { mode => '0400' }
23 # Remove instead of purge ulogd because it deletes log files on purge.
29 status => '/bin/true',
32 $munin_ips = getfromhash($site::nodeinfo, 'misc', 'v4addrs')
33 .map |$addr| { "ip_${addr}" }
35 munin::check { $munin_ips: script => 'ip_', }
37 $munin6_ips = getfromhash($site::nodeinfo, 'misc', 'v6addrs')
38 .map |$addr| { "ip_${addr}" }
39 munin::ipv6check { $munin6_ips: }
43 notify => Service['ferm'],
44 require => Package['ferm'],
47 file { '/etc/ferm/dsa.d':
53 source => 'puppet:///files/empty/',
55 file { '/etc/ferm/conf.d':
61 source => 'puppet:///files/empty/',
63 file { '/etc/default/ferm':
64 source => 'puppet:///modules/ferm/ferm.default',
65 require => Package['ferm'],
66 notify => Service['ferm'],
69 file { '/etc/ferm/ferm.conf':
70 content => template('ferm/ferm.conf.erb'),
71 notify => Service['ferm'],
73 file { '/etc/ferm/conf.d/00-init.conf':
74 content => template('ferm/00-init.conf.erb'),
75 notify => Service['ferm'],
77 file { '/etc/ferm/conf.d/me.conf':
78 content => template('ferm/me.conf.erb'),
79 notify => Service['ferm'],
81 file { '/etc/ferm/conf.d/defs.conf':
82 content => template('ferm/defs.conf.erb'),
83 notify => Service['ferm'],
85 file { '/etc/ferm/conf.d/interfaces.conf':
86 content => template('ferm/interfaces.conf.erb'),
87 notify => Service['ferm'],
89 augeas { 'logrotate_ulogd2':
90 context => '/files/etc/logrotate.d/ulogd2',
92 'set rule/schedule daily',
93 'set rule/delaycompress delaycompress',
95 'set rule/ifempty notifempty',
98 file { '/etc/logrotate.d/ulogd':
101 file { '/etc/logrotate.d/ulogd.dpkg-bak':
104 file { '/etc/logrotate.d/ulogd.dpkg-dist':