firewall: allow OUTPUT: 8140 if a puppetmaster service file exists.

2015-09-16 18:28:29 +02:00 · 2015-09-16 18:28:29 +02:00 · a80107a596
parent d3bf7d12e2
commit a80107a596
1 changed files with 4 additions and 2 deletions
--- a/4
+++ b/4
@ -145,8 +145,10 @@ fw_start() {
    $IPT -A INPUT -j ACCEPT -p udp -i "${ILAN}" -d "${IPLAN}" --sport 67:68 --dport 67:68 -m state --state NEW -m comment --comment "New DHCPD in"
  fi

+  if [ -f /etc/init.d/puppetmaster ] || [ -f /etc/systemd/system/puppetmaster.service ]; then
    #### PuppetMaster
-  #$IPT -A INPUT -j ACCEPT -p tcp -i "${ILAN}" -s "${LAN}" -d "${IPLAN}" --dport 8140 -m state --state NEW -m comment --comment "New Puppet in"
+    $IPT -A INPUT -j ACCEPT -p tcp -i "${ILAN}" -s "${LAN}" -d "${IPLAN}" --dport 8140 -m state --state NEW -m comment --comment "New Puppet in"
+  fi

  #### NFS Server
  #$IPT -A INPUT -j ACCEPT -p tcp -i "${ILAN}" -d "${IPLAN}" --dport 111 -m state --state NEW -m comment --comment "NFS out"