X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/c570b6b0493c00ebe4db775df34d384b2777d0b2..ed4958d01f094f96766531dbb4b685656a52ab29:/cookbooks/snmpd/recipes/default.rb?ds=sidebyside diff --git a/cookbooks/snmpd/recipes/default.rb b/cookbooks/snmpd/recipes/default.rb index 26ae86b78..f4a57fef2 100644 --- a/cookbooks/snmpd/recipes/default.rb +++ b/cookbooks/snmpd/recipes/default.rb @@ -37,50 +37,11 @@ service "snmpd" do supports :status => true, :restart => true end -if node[:snmpd][:clients] - node[:snmpd][:clients].each do |address| - firewall_rule "accept-snmp" do - action :accept - family "inet" - source "net:#{address}" - dest "fw" - proto "udp" - dest_ports "snmp" - source_ports "1024:" - end - end -else - firewall_rule "accept-snmp" do - action :accept - family "inet" - source "net" - dest "fw" - proto "udp" - dest_ports "snmp" - source_ports "1024:" - end -end - -if node[:snmpd][:clients6] - node[:snmpd][:clients6].each do |address| - firewall_rule "accept-snmp" do - action :accept - family "inet6" - source "net:#{address}" - dest "fw" - proto "udp" - dest_ports "snmp" - source_ports "1024:" - end - end -else - firewall_rule "accept-snmp" do - action :accept - family "inet6" - source "net" - dest "fw" - proto "udp" - dest_ports "snmp" - source_ports "1024:" - end +firewall_rule "accept-snmp" do + action :accept + context :incoming + protocol :udp + source node[:snmpd][:clients] if node[:snmpd][:clients] + dest_ports "snmp" + source_ports "1024-65535" end