projects / mirror / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Exclude nagios check_http from security to security-cdn redirect
[mirror/dsa-puppet.git] / modules / roles / manifests / snapshot_web.pp
diff --git a/modules/roles/manifests/snapshot_web.pp b/modules/roles/manifests/snapshot_web.pp
index c6f3c98..56b1a44 100644 (file)
--- a/modules/roles/manifests/snapshot_web.pp
+++ b/modules/roles/manifests/snapshot_web.pp
@@ -19,9 +19,11 @@ class roles::snapshot_web {
        #  52.59.245.42
        #  52.59.253.41
        #  52.59.71.13
+       # 20180821 mirroring
+       #  99.137.191.34
        @ferm::rule { 'dsa-snapshot-abusers':
-               prio  => "000",
-               rule  => "saddr (61.69.254.110 18.194.0.0/15 18.196.0.0/15 3.120.0.0/14 35.156.0.0/14 52.58.0.0/15) DROP",
+               prio  => "005",
+               rule  => "saddr (61.69.254.110 18.128.0.0/9 3.120.0.0/14 35.156.0.0/14 52.58.0.0/15 99.137.191.34) DROP",
        }
 
        ensure_packages ( [
Unnamed repository; edit this file 'description' to name the repository.