add rule for openvpn

author o <o@immerda.ch>

Thu, 19 Dec 2013 18:51:45 +0000 (19:51 +0100)

committer mh <mh@immerda.ch>

Sat, 5 Dec 2015 10:34:54 +0000 (11:34 +0100)
author o <o@immerda.ch>
Thu, 19 Dec 2013 18:51:45 +0000 (19:51 +0100)
committer mh <mh@immerda.ch>
Sat, 5 Dec 2015 10:34:54 +0000 (11:34 +0100)
diff --git a/manifests/rules/openvpn.pp b/manifests/rules/openvpn.pp

new file mode 100644 (file)

index 0000000..55a20d2
--- /dev/null
+++ b/manifests/rules/openvpn.pp
@@ -0,0 +1,18 @@
+class shorewall::rules::openvpn {
+    shorewall::rule { 'net-me-openvpn-udp':
+        source          => 'net',
+        destination     => '$FW',
+        proto           => 'udp',
+        destinationport => '1194',
+        order           => 240,
+        action          => 'ACCEPT';
+    }
+    shorewall::rule { 'me-net-openvpn-udp':
+        source          => '$FW',
+        destination     => 'net',
+        proto           => 'udp',
+        destinationport => '1194',
+        order           => 240,
+        action          => 'ACCEPT';
+    }
+}