From: Stephen Gran <steve@lobefin.net>
Date: Tue, 23 Feb 2010 19:10:37 +0000 (+0000)
Subject: use v4 for iptables and v6 for ip6tables
X-Git-Url: https://git.adam-barratt.org.uk/?a=commitdiff_plain;h=9a3546886af018242c160043bbd5d5affd339155;p=mirror%2Fdsa-puppet.git

use v4 for iptables and v6 for ip6tables

Signed-off-by: Stephen Gran <steve@lobefin.net>
---

diff --git a/modules/nagios/manifests/client.pp b/modules/nagios/manifests/client.pp
index 9cea3378a..2d2e98a29 100644
--- a/modules/nagios/manifests/client.pp
+++ b/modules/nagios/manifests/client.pp
@@ -47,6 +47,11 @@ class nagios::client inherits nagios {
 	}
         @ferm::rule { "dsa-nagios":
                 description     => "Allow nrpe from nagios master",
-                rule            => "proto tcp mod state state (NEW) dport (5666) @subchain 'nagios' { saddr (\$HOST_NAGIOS) ACCEPT; }"
+                rule            => "proto tcp mod state state (NEW) dport (5666) @subchain 'nagios' { saddr (\$HOST_NAGIOS_V4) ACCEPT; }"
+        }
+        @ferm::rule { "dsa-nagios":
+                description     => "Allow nrpe from nagios master",
+                domain          => "ip6",
+                rule            => "proto tcp mod state state (NEW) dport (5666) @subchain 'nagios' { saddr (\$HOST_NAGIOS_V6) ACCEPT; }"
         }
 }