X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=modules%2Fferm%2Fmanifests%2Fper-host.pp;h=2d6c5bda37b438ec72a2700aa7b922ecace0aca2;hb=0561366171545ce443bc6901460e523b504cfddb;hp=4ed687f72aee1973bf61d06c8f1a18136a59d7fe;hpb=88e5344fecee3a372f760ba53b94e824c33d5c4f;p=mirror%2Fdsa-puppet.git diff --git a/modules/ferm/manifests/per-host.pp b/modules/ferm/manifests/per-host.pp index 4ed687f72..2d6c5bda3 100644 --- a/modules/ferm/manifests/per-host.pp +++ b/modules/ferm/manifests/per-host.pp @@ -6,19 +6,25 @@ class ferm::per-host { } } case $hostname { - franck,gluck,kaufmann,klecker,lobos,morricone,raff,ries,rietz,saens,schein,senfl,steffani,valente,villa,wieck: { + franck,gluck,kaufmann,kassia,klecker,lobos,morricone,raff,ries,rietz,saens,schein,senfl,steffani,valente,villa,wieck: { include ferm::rsync } } case $hostname { - chopin,saens,villa,lobos,raff,gluck,schein,wieck,steffani,ries,rietz,franck,morricone,valente,klecker: { + chopin,franck,gluck,kassia,klecker,lobos,morricone,ravel,raff,ries,rietz,saens,schein,steffani,valente,villa,wieck: { include ferm::ftp } } case $hostname { - piatti: { + ravel: { + include ferm::nfs-server + } + } + + case $hostname { + piatti,samosa: { @ferm::rule { "dsa-udd-stunnel": description => "port 8080 for udd stunnel", rule => "&SERVICE_RANGE(tcp, http-alt, ( 192.25.206.16 70.103.162.29 217.196.43.134 ))" @@ -93,6 +99,16 @@ class ferm::per-host { description => "Allow finger access", rule => "&SERVICE(tcp, 79)" } + @ferm::rule { "dsa-ldap": + domain => "(ip ip6)", + description => "Allow ldap access", + rule => "&SERVICE(tcp, 389)" + } + @ferm::rule { "dsa-ldaps": + domain => "(ip ip6)", + description => "Allow ldaps access", + rule => "&SERVICE(tcp, 636)" + } } } }