1 class roles::ports_master {
2 rsync::site { 'ports-master':
3 source => 'puppet:///modules/roles/ports_master/rsyncd.conf',
4 # Needs to be at least number of direct mirrors plus some spare
6 sslname => 'ports-master.debian.org',
9 ssl::service { 'ports-master.debian.org':
13 vsftpd::site { 'ports-master':
14 banner => 'ports-master.debian.org FTP server',
15 logfile => '/var/log/ftp/vsftpd-ports-master.debian.org.log',
17 writable_other => true,
18 chown_user => mini-dak-unpriv,
19 root => '/srv/ports-master.debian.org/ftp.upload',
22 # export ssh allow rules for hosts that we should be able to access
23 @@ferm::rule::simple { "dsa-ssh-from-ports_master-${::fqdn}":
24 tag => 'ssh::server::from::ports_master',
25 description => 'Allow ssh access from ports-master',
27 saddr => $base::public_addresses,