added debian default, to enable the shorewall

git-svn-id: https://svn/ipuppet/trunk/modules/shorewall@1870 d66ca3ae-40d7-4aa7-90d4-87d79ca94279

diff --git a/files/debian/default b/files/debian/default
new file mode 100644 (file)
index 0000000..e2f4971
--- /dev/null
+++ b/files/debian/default
@@ -0,0 +1,17 @@
+# prevent startup with default configuration
+# set the below variable to 1 in order to allow shorewall to start
+startup=1
+
+# if your shorewall's configuration need to detect the ip address of a ppp
+# interface you must list such interface in "wait_interface" to get shorewall to
+# wait until the interface is configured otherwise the script will fail because
+# it won't be able to detect the address.
+#
+# Example:
+#    wait_interface="ppp0"
+# or 
+#    wait_interface="ppp0 ppp1"
+# or, if you have defined  in /etc/shorewall/params
+#    wait_interface=
+
+# EOF

diff --git a/manifests/init.pp b/manifests/init.pp
index 7363628ec0c85469bbfec9796a77970cfb131f92..7c2381df43b855cd6fe2c9a53ec4a148c7da4e00 100644 (file)
--- a/manifests/init.pp
+++ b/manifests/init.pp
@@ -25,6 +25,7 @@ class shorewall {
 
     case $operatingsystem {
         gentoo: { include shorewall::gentoo }
+        debian: { include shorewall::debian }
         default: { include shorewall::base }
     }
 
@@ -255,3 +256,12 @@ class shorewall::gentoo inherits shorewall::base {
         category => 'net-firewall',
     }
 }
+
+class shorewall::debian inherits shorewall::base {
+    file{'/etc/default/shorewall':
+        source => "puppet://$server/shorewall/debian/default",
+        require => Package['shorewall'],
+        notify => Service['shorewall'],
+        owner => root, group => 0, mode => 0644;
+    }
+}