Puppet Class: tripleo::masquerade_networks
- Defined in:
- manifests/masquerade_networks.pp
Overview
Class: tripleo::masqueraded_networks
Configure masqueraded_networks
- masquerade_networks
-
(Optional) Hash of masquerade networks to manage. Defaults to Defaults to hiera(‘masquerade_networks’, false)
24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 |
# File 'manifests/masquerade_networks.pp', line 24
class tripleo::masquerade_networks (
$masquerade_networks = hiera('masquerade_networks', false)
){
if $masquerade_networks {
$masquerade_networks.each |$source, $destinations| {
$destinations.each |$destination| {
create_resources('tripleo::firewall::rule', {
"137 routed_network return src ${source} dest ${destination}" => {
'table' => 'nat',
'source' => $source,
'destination' => $destination,
'jump' => 'RETURN',
'chain' => 'POSTROUTING',
'proto' => 'all',
'state' => ['ESTABLISHED', 'NEW', 'RELATED'],
},
})
}
create_resources('tripleo::firewall::rule', {
"138 routed_network masquerade ${source}" => {
'table' => 'nat',
'source' => $source,
'jump' => 'MASQUERADE',
'chain' => 'POSTROUTING',
'proto' => 'all',
'state' => ['ESTABLISHED', 'NEW', 'RELATED'],
},
"139 routed_network forward source ${source}" => {
'source' => $source,
'chain' => 'FORWARD',
'proto' => 'all',
'state' => ['ESTABLISHED', 'NEW', 'RELATED'],
},
"140 routed_network forward destinations ${source}" => {
'destination' => $source,
'chain' => 'FORWARD',
'proto' => 'all',
'state' => ['ESTABLISHED', 'NEW', 'RELATED'],
},
})
}
}
}
|