root / manifests / rules / out / openafs_client.pp @ 215aee13
Historique | Voir | Annoter | Télécharger (443 octets)
| 1 | 215aee13 | Steve Traylen | # @summary allows outbound access for afs clients |
|---|---|---|---|
| 2 | # 7000 - afs3-fileserver |
||
| 3 | # 7002 - afs3-ptserver |
||
| 4 | # 7003 - vlserver |
||
| 5 | # |
||
| 6 | # @see https://wiki.openafs.org/devel/AFSServicePorts/ AFS Service Ports |
||
| 7 | # |
||
| 8 | class nftables::rules::out::openafs_client( |
||
| 9 | Array[Integer,1] $ports = [7000, 7002, 7003], |
||
| 10 | ){
|
||
| 11 | |||
| 12 | include nftables::rules::out::kerberos |
||
| 13 | |||
| 14 | nftables::rule{'default_out-openafs_client':
|
||
| 15 | content => "udp dport {${$ports.join(', ')}} accept";
|
||
| 16 | } |
||
| 17 | |||
| 18 | } |