X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=modules%2Froles%2Fmanifests%2Fhistorical_master.pp;h=535c0fbebe17956b80046bc5f1e1bc9029d9c458;hb=ad5a5e1b27be7b1b76dba642da1de154cd95aaf3;hp=c0953f17a08f78519cfd2a42db9633da7c6e2bcb;hpb=2ebc03ce2726310ca86c1d7178f72b4b1ccfea79;p=mirror%2Fdsa-puppet.git

diff --git a/modules/roles/manifests/historical_master.pp b/modules/roles/manifests/historical_master.pp
index c0953f17a..535c0fbeb 100644
--- a/modules/roles/manifests/historical_master.pp
+++ b/modules/roles/manifests/historical_master.pp
@@ -1,14 +1,9 @@
 class roles::historical_master {
-	$sslname = 'archive-master.debian.org'
-
-	rsync::site_systemd { 'archive_master':
-		source      => 'puppet:///modules/roles/historical_master/rsyncd.conf',
-		max_clients => 100,
-		sslname     => $sslname,
-	}
-
-	ssl::service { $sslname:
-		key      => true,
-		tlsaport => [],
-	}
+  # export ssh allow rules for hosts that we should be able to access
+  @@ferm::rule::simple { "dsa-ssh-from-historical_master-${::fqdn}":
+    tag         => 'ssh::server::from::historical_master',
+    description => 'Allow ssh access from historical-master',
+    chain       => 'ssh',
+    saddr       => $base::public_addresses,
+  }
 }