projects / mirror / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Allow nagios to ssh to our hosts
[mirror/dsa-puppet.git] / modules / nagios / manifests / server.pp
diff --git a/modules/nagios/manifests/server.pp b/modules/nagios/manifests/server.pp
index 4db55d9..a67e17e 100644 (file)
--- a/modules/nagios/manifests/server.pp
+++ b/modules/nagios/manifests/server.pp
@@ -169,4 +169,11 @@ class nagios::server {
     port        => '7', # will be overwritten on collection
     saddr       => $base::public_addresses,
   }
+  # and we want to monitor ssh
+  @@ferm::rule::simple { "dsa-ssh-from-nagios-${::fqdn}":
+    tag         => 'ssh::server::from::nagios',
+    description => 'Allow ssh access from the nagios server',
+    chain       => 'ssh',
+    saddr       => $base::public_addresses,
+  }
 }
Unnamed repository; edit this file 'description' to name the repository.