mode => 0400,
notify => Exec["ferm restart"];
"/etc/ferm/conf.d/defs.conf":
- source => "puppet:///ferm/defs.conf",
+ content => template("ferm/defs.conf.erb"),
require => Package["ferm"],
mode => 0400,
notify => Exec["ferm restart"];
}
- ferm::rule { "dsa-drop":
- domain => "(ip ip6)",
- description => "Drop everything else",
- prio => "99",
- rule => "jump log_or_drop"
- }
-
-
exec { "ferm restart":
command => "/etc/init.d/ferm restart",
refreshonly => true,