re-enable puppet access

diff --git a/modules/puppetmaster/manifests/init.pp b/modules/puppetmaster/manifests/init.pp
index 28120f4..72eae64 100644 (file)
--- a/modules/puppetmaster/manifests/init.pp
+++ b/modules/puppetmaster/manifests/init.pp
@@ -10,15 +10,11 @@ class puppetmaster {
                source => 'puppet:///modules/puppetmaster/puppetdb.conf'
        }
 
-       #ferm::rule { 'dsa-puppet':
-       #       description     => 'Allow puppet access',
-       #       rule            => '&SERVICE_RANGE(tcp, 8140, $HOST_DEBIAN_V4)'
-       #}
-       #ferm::rule { 'dsa-puppet-v6':
-       #       domain          => 'ip6',
-       #       description     => 'Allow puppet access',
-       #       rule            => '&SERVICE_RANGE(tcp, 8140, $HOST_DEBIAN_V6)'
-       #}
+       ferm::rule { 'dsa-puppet':
+               description     => 'Allow puppet access',
+               domain          => '(ip ip6)',
+               rule            => '&SERVICE_RANGE(tcp, 8140, $HOST_DEBIAN)',
+       }
 
        file { '/srv/puppet.debian.org/puppet-facts':
                ensure => directory