From: mh <mh@immerda.ch>
Date: Sat, 3 Oct 2009 12:07:53 +0000 (+0200)
Subject: add keyserver rules
X-Git-Url: https://gitweb.fluxo.info/?a=commitdiff_plain;h=ca3e9a91ee3d6f0bb5b27bebca506cbff15ca87a;p=puppet-shorewall.git

add keyserver rules
---

diff --git a/manifests/rules/keyserver.pp b/manifests/rules/keyserver.pp
new file mode 100644
index 0000000..41c5d3b
--- /dev/null
+++ b/manifests/rules/keyserver.pp
@@ -0,0 +1,11 @@
+class shorewall::rules::keyserver {
+	shorewall::rule {
+		'net-me-tcp_keyserver':
+      source      => 'net',
+  		destination     => '$FW',
+	  	proto           => 'tcp',
+		  destinationport => '11371',
+   		order           => 240,
+	    action          => 'ACCEPT';
+	}
+}
diff --git a/manifests/rules/out/keyserver.pp b/manifests/rules/out/keyserver.pp
new file mode 100644
index 0000000..45fdf62
--- /dev/null
+++ b/manifests/rules/out/keyserver.pp
@@ -0,0 +1,11 @@
+class shorewall::rules::out::keyserver {
+  shorewall::rule {
+    'me-net-tcp_keyserver':
+      source          =>  '$FW',
+      destination     =>  'net',
+      proto           =>  'tcp',
+      destinationport =>  '11371',
+      order           =>  240,
+      action          => 'ACCEPT'; 
+ }
+}