/manifests/config.pp - Annoter - puppet nftables - Koumbit's Redmine

Télécharger au format

root / manifests / config.pp @ bbc93ede

Historique | Voir | Annoter | Télécharger (1,29 ko)

-ba57c66
+# manage a config snippet
 define nftables::config(
   Optional[String]
     $content = undef,
   Optional[Variant[String,Array[String,1]]]
     $source = undef,
 ){
-            e4c32222
+  $concat_name = "nftables-${name}"
   Package['nftables'] -> concat{
     $concat_name:
-da1
+      path           => "/etc/nftables/puppet-preflight/${name}.nft",
-            e4c32222
+      ensure_newline => true,
       owner          => root,
       group          => root,
       mode           => '0640',
-da1
+  } ~> Exec['nft validate'] -> file{
     "/etc/nftables/puppet/${name}.nft":
     ensure => file,
     source => "/etc/nftables/puppet-preflight/${name}.nft",
     owner  => root,
     group  => root,
     mode   => '0640',
-ba57c66
+  } ~> Service['nftables']
-            e4c32222
+  $data = split($name, '-')
   concat::fragment {
     "${concat_name}-header":
       target  => $concat_name,
       order   => '00',
       content => "table ${data[0]} ${data[1]} {",
+  }
-ba57c66
+  if $source {
-            e4c32222
+    concat::fragment {
       "${concat_name}-body":
         target => $concat_name,
         order  => 98,
         source => $source,
-ba57c66
+            mh
   } else {
-            e4c32222
+    concat::fragment {
       "${concat_name}-body":
         target  => $concat_name,
         order   => '98',
         content => $content,
-ba57c66
+            mh
+  }
-            e4c32222
+            Nacho Barrientos
   concat::fragment {
     "${concat_name}-footer":
       target  => $concat_name,
       order   => '99',
       content => '}',
+  }
-ba57c66
+            mh

Projet

Général

Profil

puppet nftables

root / manifests / config.pp @ bbc93ede