set the rules according to sysconfig

author mh <mh@immerda.ch>

Mon, 28 Sep 2009 19:47:41 +0000 (21:47 +0200)

committer Micah Anderson <micah@riseup.net>

Mon, 7 Dec 2009 16:33:52 +0000 (11:33 -0500)
author mh <mh@immerda.ch>
Mon, 28 Sep 2009 19:47:41 +0000 (21:47 +0200)
committer Micah Anderson <micah@riseup.net>
Mon, 7 Dec 2009 16:33:52 +0000 (11:33 -0500)
diff --git a/manifests/rules/nfsd.pp b/manifests/rules/nfsd.pp

index 2719a29bf81806022cfc78470d7224511f1d45b0..23ed33c4cfa23b30e2fbf2d9012645e926e0380f 100644 (file)
--- a/manifests/rules/nfsd.pp
+++ b/manifests/rules/nfsd.pp
@@ -15,35 +15,35 @@ class shorewall::rules::nfsd {
          order           => 240,
          action          => 'ACCEPT';
      }
-    shorewall::rule { 'net-me-rpc.nfsd-tcp':
+    shorewall::rule { 'net-me-rpc.statd-tcp':
          source          => 'net',
          destination     => '$FW',
          proto           => 'tcp',
-        destinationport => '2049',
+        destinationport => '662',
          order           => 240,
          action          => 'ACCEPT';
      }
-    shorewall::rule { 'net-me-rpc.nfsd-udp':
+    shorewall::rule { 'net-me-rpc.statd-udp':
          source          => 'net',
          destination     => '$FW',
          proto           => 'udp',
-        destinationport => '2049',
+        destinationport => '662',
          order           => 240,
          action          => 'ACCEPT';
      }
-    shorewall::rule { 'net-me-rpc.statd-tcp':
+    shorewall::rule { 'me-net-rpc.statd-tcp':
          source          => 'net',
          destination     => '$FW',
          proto           => 'tcp',
-        destinationport => '4000',
+        destinationport => '2020',
          order           => 240,
          action          => 'ACCEPT';
      }
-    shorewall::rule { 'net-me-rpc.statd-udp':
+    shorewall::rule { 'me-net-rpc.statd-udp':
          source          => 'net',
          destination     => '$FW',
          proto           => 'udp',
-        destinationport => '4000',
+        destinationport => '2020',
          order           => 240,
          action          => 'ACCEPT';
      }
@@ -51,7 +51,7 @@ class shorewall::rules::nfsd {
          source          => 'net',
          destination     => '$FW',
          proto           => 'tcp',
-        destinationport => '4001',
+        destinationport => '32803',
          order           => 240,
          action          => 'ACCEPT';
      }
@@ -59,7 +59,7 @@ class shorewall::rules::nfsd {
          source          => 'net',
          destination     => '$FW',
          proto           => 'udp',
-        destinationport => '4001',
+        destinationport => '32769',
          order           => 240,
          action          => 'ACCEPT';
      }
@@ -67,7 +67,7 @@ class shorewall::rules::nfsd {
          source          => 'net',
          destination     => '$FW',
          proto           => 'tcp',
-        destinationport => '4002',
+        destinationport => '892',
          order           => 240,
          action          => 'ACCEPT';
      }
@@ -75,7 +75,23 @@ class shorewall::rules::nfsd {
          source          => 'net',
          destination     => '$FW',
          proto           => 'udp',
-        destinationport => '4002',
+        destinationport => '892',
+        order           => 240,
+        action          => 'ACCEPT';
+    }
+    shorewall::rule { 'net-me-rpc.rquotad-tcp':
+        source          => 'net',
+        destination     => '$FW',
+        proto           => 'tcp',
+        destinationport => '875',
+        order           => 240,
+        action          => 'ACCEPT';
+    }
+    shorewall::rule { 'net-me-rpc.rquoata-udp':
+        source          => 'net',
+        destination     => '$FW',
+        proto           => 'udp',
+        destinationport => '875',
          order           => 240,
          action          => 'ACCEPT';
      }
author	mh <mh@immerda.ch>
	Mon, 28 Sep 2009 19:47:41 +0000 (21:47 +0200)
committer	Micah Anderson <micah@riseup.net>
	Mon, 7 Dec 2009 16:33:52 +0000 (11:33 -0500)