X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=modules%2Fstunnel4%2Fmanifests%2Finit.pp;h=5e2b8a307f2272a9487c29029904f4e5e943bd74;hb=bd9f3343da0a9df657fe061eb84697079d1afe21;hp=a71d34f0c9cac046b344bf0cc3cb7aa02ea9e3c3;hpb=bd9151bdf107fdaac8b9806fa436c7e5fc0986bb;p=mirror%2Fdsa-puppet.git

diff --git a/modules/stunnel4/manifests/init.pp b/modules/stunnel4/manifests/init.pp
index a71d34f0c..5e2b8a307 100644
--- a/modules/stunnel4/manifests/init.pp
+++ b/modules/stunnel4/manifests/init.pp
@@ -1,6 +1,12 @@
 class stunnel4 {
     define stunnel_generic($client, $verify, $cafile, $crlfile=false, $accept, $connect, $local=false) {
         file {
+            "/etc/stunnel":
+                ensure  => directory,
+                owner   => root,
+                group   => root,
+                mode    => 755,
+                ;
             "/etc/stunnel/puppet-${name}.conf":
                 content => template("stunnel4/stunnel.conf.erb"),
                 notify  => Exec['restart_stunnel'],
@@ -30,13 +36,12 @@ class stunnel4 {
             "stunnel-${name}":
                 description => "stunnel ${name}",
                 rule => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN_V4)",
-        }
-        @ferm::rule {
+                ;
             "stunnel-${name}-v6":
                 domain          => 'ip6',
                 description => "stunnel ${name}",
                 rule => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN_V6)",
-            }
+                ;
         }
     }
     define stunnel_client($accept, $connecthost, $connectport) {
@@ -55,7 +60,6 @@ class stunnel4 {
                 cafile => "/etc/stunnel/puppet-${name}-peer.pem",
                 accept => "${accept}",
                 connect => "${connecthost}:${connectport}",
-                require => [ File["/etc/stunnel/puppet-${name}-peer.pem"] ],
                 ;
         }
     }