Ben Vincent
b9465cd78b
- create classes for each class of in/out traffic - use hier_include to add firewall rules to each role
11 lines
215 B
Puppet
11 lines
215 B
Puppet
class firewall::rules::in::postgres (
|
|
Array[Stdlib::Port] $ports = [5432],
|
|
) {
|
|
|
|
$ports.each |$port| {
|
|
nftables::rule { "default_in-postgres_${port}":
|
|
content => "tcp dport ${port} accept",
|
|
}
|
|
}
|
|
}
|