listen on anycast address with apache on debian mirrors that are in the bgp group

[mirror/dsa-puppet.git] / modules / roles / manifests / security_master.pp

diff --git a/modules/roles/manifests/security_master.pp b/modules/roles/manifests/security_master.pp
index a96dbec..35fb510 100644 (file)
--- a/modules/roles/manifests/security_master.pp
+++ b/modules/roles/manifests/security_master.pp
@@ -1,8 +1,8 @@
 class roles::security_master {
-
        ssl::service { 'security-master.debian.org':
-               notify  => Exec['service apache2 reload'],
-               key => true,
+               notify   => Exec['service apache2 reload'],
+               key      => true,
+               tlsaport => [443, 1873],
        }
 
        vsftpd::site { 'security':
@@ -13,9 +13,9 @@ class roles::security_master {
                root       => '/srv/ftp.root/',
        }
 
-       rsync::site { 'security_master':
-               source        => 'puppet:///modules/roles/security_master/rsyncd.conf',
+       rsync::site_systemd { 'security_master':
+               source      => 'puppet:///modules/roles/security_master/rsyncd.conf',
                max_clients => 100,
-               sslname => "security-master.debian.org",
+               sslname     => 'security-master.debian.org',
        }
 }