/manifests/rules/out/openafs_client.pp - Annoter - puppet nftables - Koumbit's Redmine

Télécharger au format

root / manifests / rules / out / openafs_client.pp @ 04176b0e

Historique | Voir | Annoter | Télécharger (445 octets)

1	215aee13	Steve Traylen	# @summary allows outbound access for afs clients
2			# 7000 - afs3-fileserver
3			# 7002 - afs3-ptserver
4			# 7003 - vlserver
5			#
6			# @see https://wiki.openafs.org/devel/AFSServicePorts/ AFS Service Ports
7			#
8	11bf7237	Steve Traylen	class nftables::rules::out::openafs_client (
9	215aee13	Steve Traylen	Array[Integer,1] $ports = [7000, 7002, 7003],
10	11bf7237	Steve Traylen	) {
11	215aee13	Steve Traylen	include nftables::rules::out::kerberos
12
13	11bf7237	Steve Traylen	nftables::rule { 'default_out-openafs_client':
14	215aee13	Steve Traylen	content => "udp dport {${$ports.join(', ')}} accept";
15			}
16			}