class roles::security_master {
+ include roles::dakmaster
+
ssl::service { 'security-master.debian.org':
notify => Exec['service apache2 reload'],
key => true,
}
# export ssh allow rules for hosts that we should be able to access
- @@ferm::rule::simple { "dsa-ssh-from-syncproxy-${::fqdn}":
- tag => 'ssh::server::allow::security-master',
- description => 'Allow ssh access from security-master',
+ @@ferm::rule::simple { "dsa-ssh-from-security_master-${::fqdn}":
+ tag => 'ssh::server::from::security_master',
+ description => 'Allow ssh access from security_master',
port => '22',
saddr => $base::public_addresses,
}