Adding additional rules for puppetmaster

diff --git a/manifests/init.pp b/manifests/init.pp
index 6ce7eb0e1fb9cd78abda34ff95a1d7a70ff10d4e..2cfc2da5f1ac281df3f1be9bf583a5cc0e61cee3 100644 (file)
--- a/manifests/init.pp
+++ b/manifests/init.pp
@@ -455,6 +455,48 @@ class nodo::vserver inherits nodo {
             ratelimit       => '-',
             order           => '703',
           }
+
+          shorewall::rule { 'puppetmaster-5':
+            action          => 'DNAT',
+            source          => 'net',
+            destination     => "fw:192.168.0.$context:8141",
+            proto           => 'tcp',
+            destinationport => '8141',
+            ratelimit       => '-',
+            order           => '704',
+          }
+
+          shorewall::rule { 'puppetmaster-6':
+            action          => 'DNAT',
+            source          => 'net',
+            destination     => "fw:192.168.0.$context:8141",
+            proto           => 'udp',
+            destinationport => '8141',
+            ratelimit       => '-',
+            order           => '705',
+          }
+
+          shorewall::rule { 'puppetmaster-7':
+            action          => 'DNAT',
+            source          => '$FW',
+            destination     => "fw:192.168.0.$context:8141",
+            proto           => 'tcp',
+            destinationport => '8141',
+            originaldest    => "$ipaddress",
+            ratelimit       => '-',
+            order           => '706',
+          }
+
+          shorewall::rule { 'puppetmaster-8':
+            action          => 'DNAT',
+            source          => '$FW',
+            destination     => "fw:192.168.0.$context:8141",
+            proto           => 'udp',
+            destinationport => '8141',
+            originaldest    => "$ipaddress",
+            ratelimit       => '-',
+            order           => '707',
+          }
         }
 
         if $gitd {