port => '7', # will be overwritten on collection
saddr => $base::public_addresses,
}
+ # and we want to monitor ssh
+ @@ferm::rule::simple { "dsa-ssh-from-nagios-${::fqdn}":
+ tag => 'ssh::server::from::nagios',
+ description => 'Allow ssh access from the nagios server',
+ chain => 'ssh',
+ saddr => $base::public_addresses,
+ }
}
chain => 'ssh',
rule => 'saddr ($SSH_SOURCES) ACCEPT'
}
+ Ferm::Rule::Simple <<| tag == 'ssh::server::from::nagios' |>>
file { '/etc/ssh/ssh_config':
content => template('ssh/ssh_config.erb'),