allow ipv6 connections to all clients from the bacula director

diff --git a/modules/bacula/manifests/client.pp b/modules/bacula/manifests/client.pp
index 580115d..8c33181 100644 (file)
--- a/modules/bacula/manifests/client.pp
+++ b/modules/bacula/manifests/client.pp
@@ -79,15 +79,9 @@ class bacula::client inherits bacula {
                }
        }
 
-       @ferm::rule { 'dsa-bacula-fd-v4':
-               domain      => '(ip)',
+       @ferm::rule { 'dsa-bacula-fd':
+               domain      => '(ip ip6)',
                description => 'Allow bacula access from storage and director',
-               rule        => "proto tcp mod state state (NEW) dport (${bacula_client_port}) saddr (${bacula_director_ip}) ACCEPT",
+               rule        => "proto tcp mod state state (NEW) dport (${bacula_client_port}) saddr (${bacula_director_ip_addrs}) ACCEPT",
        }
-
-       #@ferm::rule { 'dsa-bacula-fd-v6':
-       #       domain      => '(ip6)',
-       #       description => 'Allow bacula access from storage and director',
-       #       rule        => "proto tcp mod state state (NEW) dport (bacula-fd) saddr (${bacula_director_ip6}) ACCEPT",
-       #}
 }

diff --git a/modules/bacula/manifests/init.pp b/modules/bacula/manifests/init.pp
index aa0c9de..fddbf78 100644 (file)
--- a/modules/bacula/manifests/init.pp
+++ b/modules/bacula/manifests/init.pp
@@ -11,7 +11,7 @@ class bacula {
        $bacula_pool_name         = 'debian'
 
        # use IP address for ferm.
-       $bacula_director_ip       = '5.153.231.19'
+       $bacula_director_ip_addrs = '5.153.231.19 2001:41c8:1000:21::21:19'
        $bacula_director_address  = 'dinis.debian.org'
        $bacula_director_port     = 9101
        $bacula_storage_address   = 'storace.debian.org'