2025-02-26 16:15:21 +01:00
|
|
|
## puppet_cd::firewall::iptables.pp
|
2025-02-26 01:31:48 +01:00
|
|
|
# Module name: puppet_cd
|
|
|
|
|
# Author: Arne Teuke (arne_teuke@confdroid)
|
|
|
|
|
# @summary Class manages firewall settings for the puppet_cd module.
|
|
|
|
|
###############################################################################
|
|
|
|
|
class puppet_cd::firewall::iptables (
|
|
|
|
|
|
2025-02-26 16:15:21 +01:00
|
|
|
) inherits puppet_cd::params {
|
|
|
|
|
if $fqdn == $pt_pm_fqdn {
|
2025-02-26 01:44:56 +01:00
|
|
|
firewall { '38140 open port 8140':
|
2025-02-26 16:15:21 +01:00
|
|
|
proto => 'tcp',
|
|
|
|
|
dport => '8140',
|
|
|
|
|
jump => 'accept',
|
2025-02-26 01:44:56 +01:00
|
|
|
}
|
|
|
|
|
firewall { '38443 open port 8443':
|
2025-02-26 16:15:21 +01:00
|
|
|
proto => 'tcp',
|
|
|
|
|
dport => '8443',
|
|
|
|
|
jump => 'accept',
|
2025-02-26 01:44:56 +01:00
|
|
|
}
|
2025-10-23 17:21:00 +02:00
|
|
|
if $pt_use_r10k_webhook == true {
|
2025-10-26 14:22:29 +01:00
|
|
|
firewall { "3${pt_r10k_webhook_port} open port ${pt_r10k_webhook_port}":
|
2025-10-26 15:31:02 +01:00
|
|
|
proto => 'tcp',
|
|
|
|
|
source => '10.0.1.0/24',
|
|
|
|
|
dport => $pt_r10k_webhook_port,
|
|
|
|
|
jump => 'accept',
|
2025-10-23 17:21:00 +02:00
|
|
|
}
|
|
|
|
|
}
|
2025-02-26 01:31:48 +01:00
|
|
|
}
|
|
|
|
|
}
|
