add masquerade rules for casulana virtual machines

author Luca Filipozzi <lfilipoz@emyr.net>

Wed, 18 Oct 2017 17:05:44 +0000 (17:05 +0000)

committer Luca Filipozzi <lfilipoz@emyr.net>

Wed, 18 Oct 2017 17:05:44 +0000 (17:05 +0000)
author Luca Filipozzi <lfilipoz@emyr.net>
Wed, 18 Oct 2017 17:05:44 +0000 (17:05 +0000)
committer Luca Filipozzi <lfilipoz@emyr.net>
Wed, 18 Oct 2017 17:05:44 +0000 (17:05 +0000)
diff --git a/modules/ferm/manifests/per_host.pp b/modules/ferm/manifests/per_host.pp

index e052c4a..2afa570 100644 (file)
--- a/modules/ferm/manifests/per_host.pp
+++ b/modules/ferm/manifests/per_host.pp
@@ -8,6 +8,14 @@ class ferm::per_host {
         }
  
         case $::hostname {
+               casulana: {
+                       @ferm::rule { 'dsa-cloud-builds-nat':
+                               description     => 'masquerade br1 virtual machines',
+                               table           => 'nat',
+                               chain           => 'POSTROUTING',
+                               rule            => 'saddr 172.16.1.0/24 outerface bond0.21 MASQUERADE'
+                       }
+               }
                 czerny,clementi: {
                         @ferm::rule { 'dsa-upsmon':
                                 description     => 'Allow upsmon access',
author	Luca Filipozzi <lfilipoz@emyr.net>
	Wed, 18 Oct 2017 17:05:44 +0000 (17:05 +0000)
committer	Luca Filipozzi <lfilipoz@emyr.net>
	Wed, 18 Oct 2017 17:05:44 +0000 (17:05 +0000)