X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/45dde9418dd342bb1a632d82559201c0b3becf1a..614474a50b36944856024c28d28530c3f61755ef:/cookbooks/snmpd/recipes/default.rb?ds=sidebyside diff --git a/cookbooks/snmpd/recipes/default.rb b/cookbooks/snmpd/recipes/default.rb index ccafc831c..26ae86b78 100644 --- a/cookbooks/snmpd/recipes/default.rb +++ b/cookbooks/snmpd/recipes/default.rb @@ -23,20 +23,20 @@ communities = data_bag_item("snmpd", "communities") package "snmpd" -service "snmpd" do - action [:enable, :start] - supports :status => true, :restart => true -end - template "/etc/snmp/snmpd.conf" do source "snmpd.conf.erb" owner "root" group "root" - mode 0o600 + mode "600" variables :communities => communities notifies :restart, "service[snmpd]" end +service "snmpd" do + action [:enable, :start] + supports :status => true, :restart => true +end + if node[:snmpd][:clients] node[:snmpd][:clients].each do |address| firewall_rule "accept-snmp" do @@ -60,3 +60,27 @@ else source_ports "1024:" end end + +if node[:snmpd][:clients6] + node[:snmpd][:clients6].each do |address| + firewall_rule "accept-snmp" do + action :accept + family "inet6" + source "net:#{address}" + dest "fw" + proto "udp" + dest_ports "snmp" + source_ports "1024:" + end + end +else + firewall_rule "accept-snmp" do + action :accept + family "inet6" + source "net" + dest "fw" + proto "udp" + dest_ports "snmp" + source_ports "1024:" + end +end