projects / mirror / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
a few more rules
[mirror/dsa-puppet.git] / modules / named / manifests / init.pp
diff --git a/modules/named/manifests/init.pp b/modules/named/manifests/init.pp
index 5d2e250..73c7cdc 100644 (file)
--- a/modules/named/manifests/init.pp
+++ b/modules/named/manifests/init.pp
@@ -25,6 +25,10 @@ class named {
                         mode    => 775,
                         ;
         }
+        ferm::rule { "dsa-bind":
+                description     => "Allow nameserver access",
+                rule            => "proto (udp tcp) mod state state (NEW) dport (53) ACCEPT"
+        }
 }
 
 # vim: set fdm=marker ts=8 sw=8 et:
Unnamed repository; edit this file 'description' to name the repository.