X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;ds=inline;f=modules%2Fpuppetmaster%2Fmanifests%2Finit.pp;h=7cb923c2836f5b7632c3305f85b4ad72c0e2cc91;hb=29cbe59430d1e7d7d5575579b48513c56227e2f7;hp=a5faeba596879336e02d2b67c4dec5d46667f655;hpb=8446320393d891e105b790352ae0c7f17514c204;p=mirror%2Fdsa-puppet.git

diff --git a/modules/puppetmaster/manifests/init.pp b/modules/puppetmaster/manifests/init.pp
index a5faeba59..7cb923c28 100644
--- a/modules/puppetmaster/manifests/init.pp
+++ b/modules/puppetmaster/manifests/init.pp
@@ -10,11 +10,11 @@ class puppetmaster {
 		source => 'puppet:///modules/puppetmaster/puppetdb.conf'
 	}
 
-	@ferm::rule { 'dsa-puppet':
+	ferm::rule { 'dsa-puppet':
 		description     => 'Allow puppet access',
 		rule            => '&SERVICE_RANGE(tcp, 8140, $HOST_DEBIAN_V4)'
 	}
-	@ferm::rule { 'dsa-puppet-v6':
+	ferm::rule { 'dsa-puppet-v6':
 		domain          => 'ip6',
 		description     => 'Allow puppet access',
 		rule            => '&SERVICE_RANGE(tcp, 8140, $HOST_DEBIAN_V6)'
@@ -27,8 +27,13 @@ class puppetmaster {
 	}
 	Concat::Fragment <<| tag == "onionbalance-services.yaml" |>>
 
-	file { '/etc/cron.d/update-fastly-ips':
-		source => 'puppet:///modules/puppetmaster/update-fastly-ips.cron'
+	file { '/etc/cron.d/puppet-update-fastly-ips': ensure => absent, }
+	file { '/etc/cron.d/update-fastly-ips': ensure => absent, }
+	concat::fragment { 'dsa-puppet-stuff---fastly-ips':
+		target => '/etc/cron.d/dsa-puppet-stuff',
+		content  => @(EOF)
+			@daily	root	/usr/local/bin/update-fastly-ips /srv/puppet.debian.org/puppet-facts/fastly_ranges.yaml
+			| EOF
 	}
 	file { '/usr/local/bin/update-fastly-ips':
 		source => 'puppet:///modules/puppetmaster/update-fastly-ips.sh',