}
# export ssh allow rules for hosts that we should be able to access
- @@ferm::rule::simple { "dsa-ssh-from-syncproxy-${::fqdn}":
- tag => 'ssh::server::allow::ftp-master',
- description => 'Allow ssh access from ftp-master',
+ @@ferm::rule::simple { "dsa-ssh-from-ftp_master-${::fqdn}":
+ tag => 'ssh::server::allow::ftp_master',
+ description => 'Allow ssh access from ftp_master',
port => '22',
saddr => $base::public_addresses,
}
}
# export ssh allow rules for hosts that we should be able to access
- @@ferm::rule::simple { "dsa-ssh-from-syncproxy-${::fqdn}":
- tag => 'ssh::server::allow::ports-master',
+ @@ferm::rule::simple { "dsa-ssh-from-ports_master-${::fqdn}":
+ tag => 'ssh::server::allow::ports_master',
description => 'Allow ssh access from ports-master',
port => '22',
saddr => $base::public_addresses,
}
# export ssh allow rules for hosts that we should be able to access
- @@ferm::rule::simple { "dsa-ssh-from-syncproxy-${::fqdn}":
- tag => 'ssh::server::allow::security-master',
- description => 'Allow ssh access from security-master',
+ @@ferm::rule::simple { "dsa-ssh-from-security_master-${::fqdn}":
+ tag => 'ssh::server::allow::security_master',
+ description => 'Allow ssh access from security_master',
port => '22',
saddr => $base::public_addresses,
}
# syncproxies should be accessible from various role hosts
Ferm::Rule::Simple <<|
tag == 'ssh::server::allow::archvsync' or
- tag == 'ssh::server::allow::ftp-master' or
- tag == 'ssh::server::allow::ports-master' or
- tag == 'ssh::server::allow::security-master'
+ tag == 'ssh::server::allow::ftp_master' or
+ tag == 'ssh::server::allow::ports_master' or
+ tag == 'ssh::server::allow::security_master'
|>>
}