projects
/
mirror
/
dsa-puppet.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (from parent 1:
7932e84
)
remove bendel/lists blackhole rules that are probably long obsolete
author
Peter Palfrader
<peter@palfrader.org>
Thu, 1 Feb 2018 18:23:22 +0000
(19:23 +0100)
committer
Peter Palfrader
<peter@palfrader.org>
Thu, 1 Feb 2018 18:23:25 +0000
(19:23 +0100)
modules/ferm/manifests/per_host.pp
patch
|
blob
|
history
diff --git
a/modules/ferm/manifests/per_host.pp
b/modules/ferm/manifests/per_host.pp
index
73ab84d
..
e8d445a
100644
(file)
--- a/
modules/ferm/manifests/per_host.pp
+++ b/
modules/ferm/manifests/per_host.pp
@@
-14,20
+14,6
@@
class ferm::per_host {
rule => '&SERVICE_RANGE(tcp, 3493, ( 82.195.75.64/26 192.168.43.0/24 ))'
}
}
rule => '&SERVICE_RANGE(tcp, 3493, ( 82.195.75.64/26 192.168.43.0/24 ))'
}
}
- bendel: {
- @ferm::rule { 'listmaster-ontp-in':
- description => 'ONTP has a broken mail setup',
- table => 'filter',
- chain => 'INPUT',
- rule => 'source 188.165.23.89/32 proto tcp dport 25 jump DROP',
- }
- @ferm::rule { 'listmaster-ontp-out':
- description => 'ONTP has a broken mail setup',
- table => 'filter',
- chain => 'OUTPUT',
- rule => 'destination 78.8.208.246/32 proto tcp dport 25 jump DROP',
- }
- }
lotti,lully,loghost-grnet-01: {
@ferm::rule { 'dsa-syslog':
description => 'Allow syslog access',
lotti,lully,loghost-grnet-01: {
@ferm::rule { 'dsa-syslog':
description => 'Allow syslog access',