Puppet Class: puppetdb::server::firewall

Inherits:
puppetdb::params
Defined in:
manifests/server/firewall.pp

Summary

manage puppetdb firewall rules

Overview

Parameters:

  • http_port (Any) (defaults to: $puppetdb::params::listen_port)
  • open_http_port (Any) (defaults to: $puppetdb::params::open_listen_port)
  • ssl_port (Any) (defaults to: $puppetdb::params::ssl_listen_port)
  • open_ssl_port (Any) (defaults to: $puppetdb::params::open_ssl_listen_port) 


4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
 
# File 'manifests/server/firewall.pp', line 4

class puppetdb::server::firewall (
  $http_port      = $puppetdb::params::listen_port,
  $open_http_port = $puppetdb::params::open_listen_port,
  $ssl_port       = $puppetdb::params::ssl_listen_port,
  $open_ssl_port  = $puppetdb::params::open_ssl_listen_port,
) inherits puppetdb::params {
  include firewall

  if ($open_http_port) {
    firewall { "${http_port} accept - puppetdb":
      dport => $http_port,
      proto => 'tcp',
      jump  => 'accept',
    }
  }

  if ($open_ssl_port) {
    firewall { "${ssl_port} accept - puppetdb":
      dport => $ssl_port,
      proto => 'tcp',
      jump  => 'accept',
    }
  }
}