notify => Exec['bacula-sd restart-when-idle']
}
- ferm::rule { 'dsa-bacula-sd-v4':
- domain => '(ip)',
- description => 'Allow bacula-sd access from director and clients',
- rule => 'proto tcp mod state state (NEW) dport (bacula-sd) @subchain \'bacula-sd\' { saddr ($HOST_DEBIAN_V4 5.153.231.125 5.153.231.126) ACCEPT; }',
- notarule => true,
- }
-
- ferm::rule { 'dsa-bacula-sd-v6':
- domain => '(ip6)',
- description => 'Allow bacula-sd access from director and clients',
- rule => 'proto tcp mod state state (NEW) dport (bacula-sd) @subchain \'bacula-sd\' { saddr ($HOST_DEBIAN_V6) ACCEPT; }',
+ ferm::rule { 'dsa-bacula-sd':
+ domain => '(ip ip6)',
+ description => 'Allow bacula-sd access from director and clients (i.e. all of Debian)',
+ rule => 'proto tcp mod state state (NEW) dport (bacula-sd) @subchain \'bacula-sd\' { saddr ($HOST_DEBIAN) ACCEPT; }',
notarule => true,
}
}
file { "${bacula_backup_path}/Catalog":
- ensure => directory,
- mode => '0755',
- owner => bacula,
- group => bacula,
+ ensure => directory,
+ mode => '0755',
+ owner => bacula,
+ group => bacula,
;
}
package { 'python3-psycopg2': ensure => installed }
file { '/usr/local/bin/bacula-unlink-removed-volumes':
- source => 'puppet:///modules/bacula/bacula-unlink-removed-volumes',
- mode => '0555',
+ source => 'puppet:///modules/bacula/bacula-unlink-removed-volumes',
+ mode => '0555',
}
- file { "/etc/cron.d/puppet-bacula-storage-stuff": ensure => absent, }
- concat::fragment { 'dsa-puppet-stuff--bacula-storage':
- target => '/etc/cron.d/dsa-puppet-stuff',
- content => @(EOF)
+ file { '/etc/cron.d/puppet-bacula-storage-stuff': ensure => absent, }
+ concat::fragment { 'puppet-crontab--bacula-storage':
+ target => '/etc/cron.d/puppet-crontab',
+ content => @(EOF)
@daily bacula chronic /usr/local/bin/bacula-unlink-removed-volumes -v
| EOF
}