dsa-rsync-ssl ferm on v6 also

[mirror/dsa-puppet.git] / modules / roles / manifests / syncproxy.pp

diff --git a/modules/roles/manifests/syncproxy.pp b/modules/roles/manifests/syncproxy.pp
index 3bdadcd..10430c1 100644 (file)
--- a/modules/roles/manifests/syncproxy.pp
+++ b/modules/roles/manifests/syncproxy.pp
@@ -69,7 +69,7 @@ class roles::syncproxy {
                        server_args => "/etc/rsyncd-syncproxy-stunnel.conf",
                        ferm        => false,
                        instances   => 50,
-                       require     => File[/etc/rsyncd-syncproxy-stunnel.conf],
+                       require     => File["/etc/rsyncd-syncproxy-stunnel.conf"],
                }
 
                if $bind6 != '' {
@@ -83,13 +83,14 @@ class roles::syncproxy {
                                server_args => "/etc/rsyncd-syncproxy-stunnel.conf",
                                ferm        => false,
                                instances   => 50,
-                               require     => File[/etc/rsyncd-syncproxy-stunnel.conf],
+                               require     => File["/etc/rsyncd-syncproxy-stunnel.conf"],
                        }
                }
 
                @ferm::rule { "dsa-rsync-ssl":
+                       domain      => '(ip ip6)',
                        description => "Allow traffic to rsync ssl",
-                       rule        => "&SERVICE(${protocol}, 1873)"
+                       rule        => "&SERVICE(tcp, 1873)"
                }
        }
 }