Puppet Class: galera::firewall

Defined in:
manifests/firewall.pp

Summary

Open firewall ports used by galera using puppetlabs-firewall.

Overview

Parameters:

  • source (Optional[String]) (defaults to: undef)

    Specifies the firewall source addresses to unblock. Valid options: a string. Default: ‘undef`



6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
 
# File 'manifests/firewall.pp', line 6

class galera::firewall (
  Optional[String] $source = undef,
) {
  $galera_ports = [
    $galera::mysql_port,
    $galera::wsrep_group_comm_port,
    $galera::wsrep_state_transfer_port,
    $galera::wsrep_inc_state_transfer_port,
  ]

  if (!$galera::arbitrator) {
    $_before = [Anchor['mysql::server::start']]
  } else { $_before = [] }

  firewall { '4567 galera accept tcp':
    before => $_before,
    proto  => 'tcp',
    dport  => $galera_ports,
    jump   => 'accept',
    source => $source,
  }
}