}
@@ferm::rule::simple { "dsa-ssh-from-syncproxy-${::fqdn}":
- tag => 'ssh::server::allow::syncproxy',
+ tag => 'ssh::server::from::syncproxy',
description => 'Allow ssh access from a syncproxy',
port => '22',
saddr => $base::public_addresses,
# syncproxies should be accessible from various role hosts
Ferm::Rule::Simple <<|
- tag == 'ssh::server::allow::archvsync' or
- tag == 'ssh::server::allow::ftp_master' or
- tag == 'ssh::server::allow::ports_master' or
- tag == 'ssh::server::allow::security_master'
+ tag == 'ssh::server::from::syncproxy' or
+ tag == 'ssh::server::from::ftp_master' or
+ tag == 'ssh::server::from::ports_master' or
+ tag == 'ssh::server::from::security_master'
|>>
}