projects
/
mirror
/
dsa-puppet.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (from parent 1:
721ad71
)
allow wuit to access the pg on danzi
author
Peter Palfrader
<peter@palfrader.org>
Tue, 17 Sep 2013 21:32:51 +0000
(23:32 +0200)
committer
Peter Palfrader
<peter@palfrader.org>
Tue, 17 Sep 2013 21:32:51 +0000
(23:32 +0200)
modules/ferm/manifests/per-host.pp
patch
|
blob
|
history
diff --git
a/modules/ferm/manifests/per-host.pp
b/modules/ferm/manifests/per-host.pp
index
04571e5
..
bb459e3
100644
(file)
--- a/
modules/ferm/manifests/per-host.pp
+++ b/
modules/ferm/manifests/per-host.pp
@@
-273,13
+273,14
@@
class ferm::per-host {
}
danzi: {
@ferm::rule { 'dsa-postgres-danzi':
}
danzi: {
@ferm::rule { 'dsa-postgres-danzi':
+ # ubc, wuit
description => 'Allow postgress access',
description => 'Allow postgress access',
- rule => '&SERVICE_RANGE(tcp, 5433, ( 206.12.19.0/24
194.177.211.200
/32 ))'
+ rule => '&SERVICE_RANGE(tcp, 5433, ( 206.12.19.0/24
5.153.231.18
/32 ))'
}
@ferm::rule { 'dsa-postgres-danzi6':
domain => 'ip6',
description => 'Allow postgress access',
}
@ferm::rule { 'dsa-postgres-danzi6':
domain => 'ip6',
description => 'Allow postgress access',
- rule => '&SERVICE_RANGE(tcp, 5433, ( 2607:f8f0:610:4000::/64 2001:
648:2ffc:deb:214:22ff:fe74:1fa
/128 ))'
+ rule => '&SERVICE_RANGE(tcp, 5433, ( 2607:f8f0:610:4000::/64 2001:
41c8:1000:21::21:18
/128 ))'
}
@ferm::rule { 'dsa-postgres2-danzi':
}
@ferm::rule { 'dsa-postgres2-danzi':