Initial refactoring

Renamed rhizomatica_base_system to rhizo_base Split up the init.pp in different subclasses More work to follow
2015-05-18 14:01:31 -05:00 · 2015-05-18 14:01:31 -05:00 · 1c7dffc32a
commit 1c7dffc32a
parent 7b938abede
192 changed files with 547 additions and 430 deletions
--- a/modules/rhizo_base/files/etc/freeswitch/autoload_configs/acl.conf.xml
+++ b/modules/rhizo_base/files/etc/freeswitch/autoload_configs/acl.conf.xml
@ -0,0 +1,38 @@
+<configuration name="acl.conf" description="Network Lists">
+  <network-lists>
+    <!-- 
+	 These ACL's are automatically created on startup.
+
+	 rfc1918.auto  - RFC1918 Space
+	 nat.auto      - RFC1918 Excluding your local lan.
+	 localnet.auto - ACL for your local lan.
+	 loopback.auto - ACL for your local lan.
+    -->
+
+    <list name="lan" default="allow">
+      <node type="deny" cidr="192.168.42.0/24"/>
+      
+      <node type="allow" cidr="192.168.42.42/32"/>
+    </list>
+
+    <!--
+	This will traverse the directory adding all users 
+	with the cidr= tag to this ACL, when this ACL matches
+	the users variables and params apply as if they 
+	digest authenticated.
+    -->
+    <list name="domains" default="deny">
+      <!-- domain= is special it scans the domain from the directory to build the ACL -->
+      <!--<node type="allow" domain="$${domain}"/> -->
+      <node type="allow" cidr="10.66.0.0/24"/>
+      <node type="allow" cidr="10.23.0.0/16"/>
+      <node type="allow" cidr="172.16.0.0/16"/>
+      <node type="allow" cidr="127.0.0.1/32"/>
+
+      <!-- use cidr= if you wish to allow ip ranges to this domains acl. -->
+      <!-- <node type="allow" cidr="192.168.0.0/24"/> -->
+    </list>
+
+  </network-lists>
+</configuration>
+