Commit d3784c34 authored by mh's avatar mh

there might be people who don't have a stun server

parent 6c8ff8ea
# open ports used by a jabberserver
# in and outbound.
class shorewall::rules::jabberserver {
class shorewall::rules::jabberserver(
$open_stun = true,
) {
shorewall::rule {
'net-me-tcp_jabber':
source => 'net',
......@@ -9,13 +11,6 @@ class shorewall::rules::jabberserver {
destinationport => '5222,5223,5269',
order => 240,
action => 'ACCEPT';
'net-me-udp_jabber_stun_server':
source => 'net',
destination => '$FW',
proto => 'udp',
destinationport => '3478',
order => 240,
action => 'ACCEPT';
'me-net-tcp_jabber_s2s':
source => '$FW',
destination => 'net',
......@@ -25,4 +20,15 @@ class shorewall::rules::jabberserver {
action => 'ACCEPT';
}
if $open_stun {
shorewall::rule {
'net-me-udp_jabber_stun_server':
source => 'net',
destination => '$FW',
proto => 'udp',
destinationport => '3478',
order => 240,
action => 'ACCEPT';
}
}
}
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment