modules/ferm/manifests/init.pp

   1 class ferm {
   2         define rule($domain="ip", $chain="INPUT", $rule, $description="", $prio="00") {
   3                 file { "/etc/ferm/dsa.d/${prio}_${name}":
   4                         ensure  => present,
   5                         owner   => root,
   6                         group   => root,
   7                         mode    => 0600,
   8                         content => template("ferm/ferm-rule.erb"),
   9                         notify  => Exec["ferm restart"],
  10                 }
  11         }
  12
  13         file {
  14                 "/etc/ferm":
  15                         ensure => directory;
  16                 "/etc/ferm/dsa.d":
  17                         ensure => directory;
  18         }
  19
  20         exec { "ferm restart":
  21                 command     => "/bin/true",
  22                 refreshonly => true,
  23         }
  24
  25 }