bacula-ferm: we do not need to explicitly allow connections from localhost

diff --git a/modules/bacula/manifests/director.pp b/modules/bacula/manifests/director.pp
index c5f6f28..86c903d 100644 (file)
--- a/modules/bacula/manifests/director.pp
+++ b/modules/bacula/manifests/director.pp
@@ -42,12 +42,6 @@ class bacula::director inherits bacula {
                notify  => Exec['bacula-director reload']
        }
 
-       @ferm::rule { 'dsa-bacula-dir':
-               domain      => '(ip)',
-               description => 'Allow bacula access from localhost',
-               rule        => "proto tcp mod state state (NEW) dport (bacula-dir) saddr (${bacula_director_ip} localhost) ACCEPT",
-       }
-
        file { '/etc/bacula/conf.d/empty.conf':
                content => '',
                mode    => '0440',