1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
|
# File 'modules/profile/manifests/dumps/nfs.pp', line 1
class profile::dumps::nfs(
Hash $clients_all = lookup('dumps_nfs_clients'),
String $clients_wanted = lookup('profile::dumps::nfs::clients_wanted'),
) {
$path = '/data'
if ($clients_wanted == 'all') {
$clients = {'generation' => pick($clients_all['snapshots'], []),
'public' => pick($clients_all['other'], [])}
} elsif ($clients_wanted == 'generation') {
$clients = {'generation' => pick($clients_all['snapshots'], [])}
} elsif ($clients_wanted == 'public') {
$clients = {'public' => pick($clients_all['other'], [])}
} else {
$clients = {}
}
$lockd_udp = 32768
$lockd_tcp = 32769
$mountd_port = 32767
$statd_port = 32765
$statd_out = 32766
$portmapper_port = 111
class { '::dumps::nfs':
clients => $clients,
path => $path,
lockd_udp => $lockd_udp,
lockd_tcp => $lockd_tcp,
mountd_port => $mountd_port,
statd_port => $statd_port,
statd_out => $statd_out,
}
include ::network::constants
ferm::service { 'dumps_nfs':
proto => 'tcp',
port => '2049',
srange => '$PRODUCTION_NETWORKS',
}
ferm::service { 'nfs_rpc_mountd':
proto => 'tcp',
port => $mountd_port,
srange => '$PRODUCTION_NETWORKS',
}
ferm::service { 'nfs_rpc_statd':
proto => 'tcp',
port => $statd_port,
srange => '$PRODUCTION_NETWORKS',
}
ferm::service { 'nfs_portmapper_udp':
proto => 'udp',
port => $portmapper_port,
srange => '$PRODUCTION_NETWORKS',
}
ferm::service { 'nfs_portmapper_tcp':
proto => 'tcp',
port => $portmapper_port,
srange => '$PRODUCTION_NETWORKS',
}
ferm::service { 'nfs_lockd_udp':
proto => 'udp',
port => $lockd_udp,
srange => '$PRODUCTION_NETWORKS',
}
ferm::service { 'nfs_lockd_tcp':
proto => 'tcp',
port => $lockd_tcp,
srange => '$PRODUCTION_NETWORKS',
}
class { '::dumps::monitoring': }
}
|