[MediaWiki-commits] [Gerrit] firewall: remove, unused - change (operations/puppet)

Matanya (Code Review) Tue, 28 Oct 2014 13:25:51 -0700

Matanya has uploaded a new change for review.

  https://gerrit.wikimedia.org/r/169571


Change subject: firewall: remove, unused
......................................................................

firewall: remove, unused

Change-Id: Ie987ec2312c5e9d167ae4bcb0a955d2b95b5ad1b
---
D manifests/misc/firewall.pp
1 file changed, 0 insertions(+), 78 deletions(-)


  git pull ssh://gerrit.wikimedia.org:29418/operations/puppet 
refs/changes/71/169571/1

diff --git a/manifests/misc/firewall.pp b/manifests/misc/firewall.pp
deleted file mode 100644
index af9213e..0000000
--- a/manifests/misc/firewall.pp
+++ /dev/null
@@ -1,78 +0,0 @@
-class firewall::builder {
-
-    package { ['fwconfigtool', 'python-argparse'] :
-          ensure => latest,
-    }
-    file { '/var/lib/fwconfigtool':
-        ensure => directory,
-        owner  => 'root',
-        group  => 'root',
-        mode   => '0755',
-    }
-
-    file { '/var/lib/fwconfigtool/machineports':
-        ensure => directory,
-        owner  => 'root',
-        group  => 'root',
-        mode   => '0755',
-    }
-
-    # collect all fw definitions
-    Exported_acl_rule <<| |>>
-
-}
-
-class firewall { 
-    # for each inbound ACL create an exported file on the main server
-
-    # This is the definition called from all service manifests, e.g.
-    # open_port { "mail": port => 25 }
-
-    define open_port(
-        $port,
-        $hostname  = $::hostname,
-        $ip_address= $::ipaddress,
-        $protocol  = 'tcp',
-    ) {
-        @@exported_acl_rule { $title:
-            hostname   => $hostname,
-            ip_address => $ip_address,
-            protocol   => $protocol,
-            port       => $port,
-        }
-    }
-
-    define exported_acl_rule(
-        $port,
-        $hostname   = $::hostname,
-        $ip_address = $::ipaddress,
-        $protocol   = 'tcp',
-    ) {
-        file { "/var/lib/fwconfigtool/machineports/${ip_address}-${port}":
-            ensure  => present,
-            content => "${hostname},${ip_address},${protocol},${port}\n",
-            owner   => 'root',
-            group   => 'root',
-            tag     => 'inboundacl',
-        }
-    }
-
-}
-
-class testcase1 {
-    include firewall
-    firewall::open_port { 'testbox':
-        port => 80,
-    }
-    firewall::open_port { 'test2':
-        port => 443,
-    }
-}
-
-class testcase2 {
-    include firewall
-    firewall::inboundacl { 'test2':
-        ip_address => '2.3.4.5',
-        port       => 80,
-    }
-}

-- 
To view, visit https://gerrit.wikimedia.org/r/169571
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings

Gerrit-MessageType: newchange
Gerrit-Change-Id: Ie987ec2312c5e9d167ae4bcb0a955d2b95b5ad1b
Gerrit-PatchSet: 1
Gerrit-Project: operations/puppet
Gerrit-Branch: production
Gerrit-Owner: Matanya <mata...@foss.co.il>

_______________________________________________
MediaWiki-commits mailing list
MediaWiki-commits@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits

[MediaWiki-commits] [Gerrit] firewall: remove, unused - change (operations/puppet)

Reply via email to