projects
/
mirror
/
dsa-puppet.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Slightly modify ldapinfo, let's see what blows up
[mirror/dsa-puppet.git]
/
modules
/
ferm
/
manifests
/
per-host.pp
diff --git
a/modules/ferm/manifests/per-host.pp
b/modules/ferm/manifests/per-host.pp
index
a4ab0d9
..
ec082c3
100644
(file)
--- a/
modules/ferm/manifests/per-host.pp
+++ b/
modules/ferm/manifests/per-host.pp
@@
-111,7
+111,7
@@
class ferm::per-host {
cilea: {
file {
"/etc/ferm/conf.d/load_sip_conntrack.conf":
cilea: {
file {
"/etc/ferm/conf.d/load_sip_conntrack.conf":
- source => "puppet:///ferm/conntrack_sip.conf",
+ source => "puppet:///
modules/
ferm/conntrack_sip.conf",
require => Package["ferm"],
notify => Exec["ferm restart"];
}
require => Package["ferm"],
notify => Exec["ferm restart"];
}
@@
-200,12
+200,22
@@
class ferm::per-host {
case $hostname {
sibelius: {
@ferm::rule { "dsa-snapshot-varnish":
case $hostname {
sibelius: {
@ferm::rule { "dsa-snapshot-varnish":
- rule => '&SERVICE(tcp,
11371)'
+ rule => '&SERVICE(tcp,
6081)',
}
}
+ @ferm::rule { "dsa-nat-snapshot-varnish":
+ table => 'nat',
+ chain => 'PREROUTING',
+ rule => 'proto tcp daddr 193.62.202.28 dport 80 REDIRECT to-ports 6081',
+ }
+ }
+ stabile: {
@ferm::rule { "dsa-snapshot-varnish":
@ferm::rule { "dsa-snapshot-varnish":
- table => 'nat'
- chain => 'PREROUTING'
- rule => 'proto tcp daddr 193.62.202.28 dport 80 REDIRECT to-ports 6081'
+ rule => '&SERVICE(tcp, 6081)',
+ }
+ @ferm::rule { "dsa-nat-snapshot-varnish":
+ table => 'nat',
+ chain => 'PREROUTING',
+ rule => 'proto tcp daddr 206.12.19.150 dport 80 REDIRECT to-ports 6081',
}
}
}
}
}
}