Adding firewall::ppp

author Silvio Rhatto <rhatto@riseup.net>

Wed, 14 Sep 2011 15:00:59 +0000 (12:00 -0300)

committer Silvio Rhatto <rhatto@riseup.net>

Wed, 14 Sep 2011 15:00:59 +0000 (12:00 -0300)
author Silvio Rhatto <rhatto@riseup.net>
Wed, 14 Sep 2011 15:00:59 +0000 (12:00 -0300)
committer Silvio Rhatto <rhatto@riseup.net>
Wed, 14 Sep 2011 15:00:59 +0000 (12:00 -0300)
diff --git a/manifests/init.pp b/manifests/init.pp

index f96b5ee44c761140fe90fb2b50fad62afb28c22e..250e88f582a3e58b5c88132bdec7e39c716c462e 100644 (file)
--- a/manifests/init.pp
+++ b/manifests/init.pp
@@ -87,6 +87,7 @@ import "subsystems/firewall/ups.pp"
  import "subsystems/firewall/wifi.pp"
  import "subsystems/firewall/local.pp"
  import "subsystems/firewall/openvpn.pp"
+import "subsystems/firewall/ppp.pp"
  
  # Import nodo classes
  import "nodo.pp"
diff --git a/manifests/subsystems/firewall/ppp.pp b/manifests/subsystems/firewall/ppp.pp

new file mode 100644 (file)

index 0000000..f646519
--- /dev/null
+++ b/manifests/subsystems/firewall/ppp.pp
@@ -0,0 +1,31 @@
+class firewall::ppp {
+  shorewall::zone { 'ppp':
+    type  => 'ipv4',
+    order => '4',
+  }
+
+  shorewall::interface { 'ppp0':
+    zone => 'ppp',
+  }
+
+  shorewall::policy { 'loc-ppp':
+    sourcezone      => 'loc',
+    destinationzone => 'ppp', 
+    policy          => 'ACCEPT',
+    order           => '30',
+  }
+
+  shorewall::policy { 'ppp-loc':
+    sourcezone      => 'ppp',
+    destinationzone => 'loc', 
+    policy          => 'ACCEPT',
+    order           => '31',
+  }
+
+  shorewall::policy { 'fw-ppp':
+    sourcezone      => '$FW',
+    destinationzone => 'ppp', 
+    policy          => 'ACCEPT',
+    order           => '32',
+  }
+}
author	Silvio Rhatto <rhatto@riseup.net>
	Wed, 14 Sep 2011 15:00:59 +0000 (12:00 -0300)
committer	Silvio Rhatto <rhatto@riseup.net>
	Wed, 14 Sep 2011 15:00:59 +0000 (12:00 -0300)
manifests/init.pp		patch \| blob \| history
manifests/subsystems/firewall/ppp.pp	[new file with mode: 0644]	patch \| blob