root / manifests / rules / out / openafs_client.pp @ 020842af
Historique | Voir | Annoter | Télécharger (489 octets)
| 1 | 09cba182 | Steve Traylen | # @summary |
|---|---|---|---|
| 2 | # allows outbound access for afs clients |
||
| 3 | # 7000 - afs3-fileserver |
||
| 4 | # 7002 - afs3-ptserver |
||
| 5 | # 7003 - vlserver |
||
| 6 | # @param ports port numbers to use |
||
| 7 | 215aee13 | Steve Traylen | # @see https://wiki.openafs.org/devel/AFSServicePorts/ AFS Service Ports |
| 8 | # |
||
| 9 | 11bf7237 | Steve Traylen | class nftables::rules::out::openafs_client ( |
| 10 | 94a80621 | Steve Traylen | Array[Stdlib::Port,1] $ports = [7000, 7002, 7003], |
| 11 | 11bf7237 | Steve Traylen | ) {
|
| 12 | 215aee13 | Steve Traylen | include nftables::rules::out::kerberos |
| 13 | |||
| 14 | 11bf7237 | Steve Traylen | nftables::rule { 'default_out-openafs_client':
|
| 15 | 215aee13 | Steve Traylen | content => "udp dport {${$ports.join(', ')}} accept";
|
| 16 | } |
||
| 17 | } |