Puppet Class: role::mariadb::ferm
- Defined in:
- modules/role/manifests/mariadb/ferm.pp
Overview
5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 |
# File 'modules/role/manifests/mariadb/ferm.pp', line 5
class role::mariadb::ferm {
ferm::service{ 'mariadb_internal':
proto => 'tcp',
port => '3306',
notrack => true,
srange => '$INTERNAL',
}
ferm::service{ 'orchestrator':
proto => 'tcp',
port => '3306',
notrack => true,
srange => '@resolve((dborch1001.wikimedia.org))',
}
# for DBA purposes
ferm::rule { 'mariadb_dba':
rule => 'saddr ($MYSQL_ROOT_CLIENTS) proto tcp dport (3307) ACCEPT;',
}
}
|