projects / mirror / dsa-puppet.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 7e8fb39)
stunnel: merge IPv4 and IPv6 rules in a single rule
authorAurelien Jarno <aurelien@aurel32.net>
Fri, 27 Sep 2019 22:32:19 +0000 (00:32 +0200)
committerAurelien Jarno <aurelien@aurel32.net>
Fri, 27 Sep 2019 22:32:39 +0000 (00:32 +0200)
modules/stunnel4/manifests/server.pp patch | blob | history

diff --git a/modules/stunnel4/manifests/server.pp b/modules/stunnel4/manifests/server.pp
index 57a317e..78111d8 100644 (file)
--- a/modules/stunnel4/manifests/server.pp
+++ b/modules/stunnel4/manifests/server.pp
@@ -20,13 +20,8 @@ define stunnel4::server($accept, $connect, $local = '127.0.0.1') {
 
        ferm::rule {
                "stunnel-${name}":
+                       domain      => "(ip ip6)",
                        description => "stunnel ${name}",
-                       rule        => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN_V4)"
+                       rule        => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN)"
        }
-       ferm::rule { "stunnel-${name}-v6":
-                       domain      => 'ip6',
-                       description => "stunnel ${name}",
-                       rule        => "&SERVICE_RANGE(tcp, ${accept}, \$HOST_DEBIAN_V6)"
-       }
-
 }
Unnamed repository; edit this file 'description' to name the repository.