class stunnel4 {
define stunnel_generic($client, $verify, $cafile, $crlfile=false, $accept, $connect, $local=false) {
file {
class stunnel4 {
define stunnel_generic($client, $verify, $cafile, $crlfile=false, $accept, $connect, $local=false) {
file {
"/etc/stunnel/puppet-${name}.conf":
content => template("stunnel4/stunnel.conf.erb"),
notify => Exec['restart_stunnel'],
"/etc/stunnel/puppet-${name}.conf":
content => template("stunnel4/stunnel.conf.erb"),
notify => Exec['restart_stunnel'],
"stunnel-${name}":
description => "stunnel ${name}",
rule => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN_V4)",
"stunnel-${name}":
description => "stunnel ${name}",
rule => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN_V4)",
"stunnel-${name}-v6":
domain => 'ip6',
description => "stunnel ${name}",
rule => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN_V6)",
"stunnel-${name}-v6":
domain => 'ip6',
description => "stunnel ${name}",
rule => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN_V6)",
cafile => "/etc/stunnel/puppet-${name}-peer.pem",
accept => "${accept}",
connect => "${connecthost}:${connectport}",
cafile => "/etc/stunnel/puppet-${name}-peer.pem",
accept => "${accept}",
connect => "${connecthost}:${connectport}",