Ben Vincent
b9465cd78b
- create classes for each class of in/out traffic - use hier_include to add firewall rules to each role
11 lines
226 B
Puppet
11 lines
226 B
Puppet
class firewall::rules::in::puppetdbapi (
|
|
Array[Stdlib::Port] $ports = [8080,8081],
|
|
) {
|
|
|
|
$ports.each |$port| {
|
|
nftables::rule { "default_in-puppetdbapi_${port}":
|
|
content => "tcp dport ${port} accept",
|
|
}
|
|
}
|
|
}
|