2 package { "heimdal-clients": ensure => installed }
6 content => template("krb/krb5.conf.erb"),
7 require => Package["heimdal-clients"],
13 @ferm::rule { "dsa-krb-kdc":
15 description => "kerberos KDC",
16 rule => "&TCP_UDP_SERVICE(kerberos)"
23 @ferm::rule { "dsa-krb-ipropd":
25 description => "kerberos ipropd",
26 rule => "&SERVICE_RANGE(tcp, iprop, 206.12.19.119)",
28 @ferm::rule { "dsa-krb-ipropd-v6":
30 description => "kerberos ipropd (IPv6)",
31 rule => "&SERVICE_RANGE(tcp, iprop, 2607:f8f0:610:4000:216:36ff:fe40:380a)",
33 @ferm::rule { "dsa-krb-kpasswdd":
35 description => "kerberos KDC",
36 rule => "&SERVICE(udp, kpasswd)",
38 @ferm::rule { "dsa-krb-kadmind":
40 description => "kerberos kadmind access from draghi",
41 rule => "&SERVICE_RANGE(tcp, kerberos-adm, 82.195.75.106)",
43 @ferm::rule { "dsa-krb-kadmind-v6":
45 description => "kerberos kadmind access from draghi",
46 rule => "&SERVICE_RANGE(tcp, kerberos-adm, 2001:41b8:202:deb:216:36ff:fe40:3906)",
54 # vim:set shiftwidth=4: