keith/puppet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
puppet/modules/rhizo_base/manifests/init.pp

782 lines
23 KiB
Puppet
Raw Blame History

# Class: rhizo_base
#
# This module manages the Rhizomatica base system
#
# Parameters: none
#
# Actions:
#
# Requires: see Modulefile
#
# Sample Usage:
#
class rhizo_base {
$mail_admins = hiera('rhizo::mail_admins')
$smsc_password = hiera('rhizo::smsc_password')
$password_hash = hiera('rhizo::password_hash')
$production = hiera('rhizo::production', 1)
# Configuration settings
$notouchcron = hiera('rhizo::notouchcron', 0)
$notouchrepo = hiera('rhizo::notouchrepo', 0)
$use_ups = hiera('rhizo::use_ups')
$rhizomatica_dir = hiera('rhizo::rhizomatica_dir')
$use_sip = hiera('rhizo::use_sip')
$advice_email = hiera('rhizo::advice_email')
$charge_scheme = hiera('rhizo::charge_scheme', 'normal')
$test_playback = hiera('rhizo::test_playback', 'tone_stream://%(4000,250,440);loops=-1')
$sip_calling_url = hiera('rhizo::sip_calling_url', '')
# database
$pgsql_db = hiera('rhizo::pgsql_db')
$pgsql_user = hiera('rhizo::pgsql_user')
$pgsql_pwd = hiera('rhizo::pgsql_pwd')
$pgsql_host = hiera('rhizo::pgsql_host')
# SITE
$site_routing = hiera('rhizo::site_routing', '')
$site_name = hiera('rhizo::site_name')
$postcode = hiera('rhizo::postcode')
$pbxcode = hiera('rhizo::pbxcode')
$hlr_db = '/var/lib/osmocom/hlr.db'
$sms_db = '/var/lib/osmocom/sms.db'
# network name
$network_name = hiera('rhizo::network_name')
$gprs = hiera('rhizo::gprs', 'egprs')
$mcc = hiera('rhizo::mcc', '334')
$mnc = hiera('rhizo::mnc', '07')
#BTSs configuration
$opkg_creds = hiera('rhizo::bts_opkg_creds')
$bts = hiera('rhizo::bts')
$bts_pass = hiera('rhizo::bts_pass')
$bts_type = hiera('rhizo::bts_type')
$bts_amps = hiera('rhizo::bts_amps', "on")
$ms_max_power = hiera('rhizo::ms_max_power', '5')
$max_power_red = hiera('rhizo::max_power_red', '24')
$mncc_codec = hiera('rhizo::mncc_codec', 'AMR')
$inter_codec = hiera('rhizo::inter_codec', 'AMR')
$upstream_codec = hiera('rhizo::upstream_codec', 'G729')
$dids = hiera('rhizo::dids', '')
$lcls = hiera('rhizo::lcls', '0')
$jb_in = hiera('rhizo::jb_in', '')
$jb_out = hiera('rhizo::jb_out', '')
$jb_bts = hiera('rhizo::jb_bts', '100')
# IP address
$has_ip6 = hiera('rhizo::has_ip6', '')
$ip6_trusted = hiera('rhizo::ip6_trusted', '::1/128')
$mncc_ip_address = hiera('rhizo::mncc_ip_address', '172.16.0.1')
$bsc_ip_address = hiera('rhizo::bsc_ip_address', '172.16.0.1')
$vpn_ip_address = hiera('rhizo::vpn_ip_address')
$wan_ip_address = hiera('rhizo::wan_ip_address')
$wifi_ip_address = hiera('rhizo::wifi_ip_address', '172.24.0.1')
$wifi_net = hiera('rhizo::wifi_net', '172.24.0.0/16')
$wifi_dhcp_range = hiera('rhizo::wifi_dhcp_range', '172.24.0.1,172.24.100.254')
$wifi_dns = hiera('rhizo::wifi_dns', '1.1.1.1')
$sip_central_ip_address = hiera('rhizo::sip_central_ip_address')
$webphone_prefix = hiera('rhizo::webphone_prefix', '[]')
$latency_check_address = hiera('rhizo::latency_check_address','1.1.1.1')
$latency_check_vpn = hiera('rhizo::latency_check_vpn','10.23.0.2')
$ssh_addr = hiera('rhizo::ssh_t_address','127.0.0.1')
$ssh_user = hiera('rhizo::ssh_user','')
$ssh_p = split($vpn_ip_address, '\.')[3]
$proto_pub_ip_regex = hiera('rhizo::proto_pub_ip_regex','^0.0.0.0$')
$stats_disk = hiera('rhizo::stats_disk','sda1')
$stats_if = hiera('rhizo::stats_if','eth0')
$wifi_if = hiera('rhizo::wifi_if','eth3')
$has_wifi = hiera('rhizo::has_wifi', 0)
# SITE settings
# rate type can be "call" or "min"
$admin_numbers = hiera('rhizo::admin_numbers', '[]')
$admin_pin = hiera('rhizo::admin_pin', '0000')
$limit_local_calls = hiera('rhizo::limit_local_calls')
$limit_local_minutes = hiera('rhizo::limit_local_minutes')
$charge_local_calls = hiera('rhizo::charge_local_calls')
$charge_local_rate = hiera('rhizo::charge_local_rate')
$charge_local_rate_type = hiera('rhizo::charge_local_rate_type')
$charge_internal_calls = hiera('rhizo::charge_internal_calls')
$charge_internal_rate = hiera('rhizo::charge_internal_rate')
$charge_internal_rate_type = hiera('rhizo::charge_internal_rate_type')
$charge_inbound_calls = hiera('rhizo::charge_inbound_calls')
$charge_inbound_rate = hiera('rhizo::charge_inbound_rate')
$charge_inbound_rate_type = hiera('rhizo::charge_inbound_rate_type')
$charge_outbound_rate_type = hiera('rhizo::charge_outbound_rate_type')
$smsc_shortcode = hiera('rhizo::smsc_shortcode')
$sms_sender_unauthorized = hiera('rhizo::sms_sender_unauthorized')
$sms_destination_unauthorized = hiera('rhizo::sms_destination_unauthorized')
$free_numbers = hiera('rhizo::free_numbers', '[]')
$welcome_sms = hiera('rhizo::welcome_sms', '')
$currencies = hiera('rhizo::currencies', '{}')
$rai_admin_user = hiera('rhizo::rai_admin_user')
$rai_admin_pwd = hiera('rhizo::rai_admin_pwd')
$default_log_level = hiera('rhizo::default_log_level', 'INFO')
$smpp_password = hiera('rhizo::smpp_password', 'Password')
# VOIP provider
$voip_provider_name = hiera('rhizo::voip_provider_name')
$voip_username = hiera('rhizo::voip_username')
$voip_fromuser = hiera('rhizo::voip_fromuser')
$voip_password = hiera('rhizo::voip_password')
$voip_pin = hiera('rhizo::voip_pin')
$voip_proxy = hiera('rhizo::voip_proxy')
$voip_did = hiera('rhizo::voip_did')
$voip_cli = hiera('rhizo::voip_cli')
$reg_provider = hiera('rhizo::reg_provider', 'true')
$voip_chans_max = hiera('rhizo::voip_chans_max', '200')
$voip_mod = hiera('rhizo::voip_mod', 'lambda num: num')
$has_vsat = hiera('rhizo::has_vsat', 0)
# Subscription SMS notification
$notice_msg = hiera('rhizo::notice_msg')
$reminder_msg = hiera('rhizo::reminder_msg')
$deactivate_msg = hiera('rhizo::deactivate_msg')
$sms_credit_added = hiera('rhizo::sms_credit_added')
#Roaming welcome SMS
$sms_welcome_roaming = hiera('rhizo::sms_welcome_roaming')
#Emergency number
$emergency_contact = hiera('rhizo::emergency_contact')
#Number to send low VOIP Balance alert
$admin_contact = hiera('rhizo::admin_contact','')
$support_contact = hiera('rhizo::support_contact','')
$gpsd = hiera('rhizo::gpsd','172.16.0.11')
#Device Geo Info
$bsc_geo_lat = hiera('rhizo::bsc_geo_lat')
$bsc_geo_lon = hiera('rhizo::bsc_geo_lon')
$bts_geo = [ 'shift', hiera('rhizo::bts1_geo_lat'), hiera('rhizo::bts1_geo_lon'),
hiera('rhizo::bts2_geo_lat', false), hiera('rhizo::bts2_geo_lon', false),
hiera('rhizo::bts3_geo_lat', false), hiera('rhizo::bts3_geo_lon', false) ]
$link1_ip_address = hiera('rhizo::link1_ip_address', false)
$link2_ip_address = hiera('rhizo::link2_ip_address', false)
$link3_ip_address = hiera('rhizo::link3_ip_address', false)
$link4_ip_address = hiera('rhizo::link4_ip_address', false)
$link5_ip_address = hiera('rhizo::link5_ip_address', false)
$link1_geo_lat = hiera('rhizo::link1_geo_lat', false)
$link1_geo_lon = hiera('rhizo::link1_geo_lon', false)
$link2_geo_lat = hiera('rhizo::link2_geo_lat', false)
$link2_geo_lon = hiera('rhizo::link2_geo_lon', false)
$link3_geo_lat = hiera('rhizo::link3_geo_lat', false)
$link3_geo_lon = hiera('rhizo::link3_geo_lon', false)
$link4_geo_lat = hiera('rhizo::link4_geo_lat', false)
$link4_geo_lon = hiera('rhizo::link4_geo_lon', false)
$link5_geo_lat = hiera('rhizo::link5_geo_lat', false)
$link5_geo_lon = hiera('rhizo::link5_geo_lon', false)
class { '::ntp':
servers => hiera('rhizo::ntp_servers')
}
include ::ntp
include ::sshkeys
include rhizo_base::fixes
include rhizo_base::apt
include rhizo_base::users
include rhizo_base::packages
include rhizo_base::postgresql
include rhizo_base::freeswitch
include rhizo_base::runit
include rhizo_base::osmocom
include rhizo_base::sudo
include rhizo_base::kiwi
if $operatingsystem != 'Debian' {
include rhizo_base::icinga
}
if $has_vsat == 1 {
include rhizo_base::sems
}
if $has_wifi == 1 {
Firewall {
require => undef,
}
class { 'firewall': }
include rhizo_base::wifi
}
sysctl { 'net.ipv4.ip_forward':
value => '1'
}
schedule { 'always':
period => hourly,
repeat => 2,
}
schedule { 'onceday':
period => daily,
repeat => 1,
}
schedule { 'onceweek':
period => weekly,
repeat => 1,
}
schedule { 'weekly':
weekday => 'Sunday',
}
schedule { 'offpeak':
range => '1 - 4.30',
}
schedule { 'repod':
range => '1 - 2',
}
schedule { 'repo':
period => monthly,
repeat => 1,
}
schedule { 'never':
period => never,
}
#Rhizomatica scripts
file { '/home/rhizomatica/bin':
ensure => directory,
source => 'puppet:///modules/rhizo_base/bin',
owner => 'root',
recurse => remote,
purge => false,
}
file { '/home/rhizomatica/bin/get_ip.sh':
ensure => present,
content => template('rhizo_base/get_ip.sh.erb'),
group => 'rhizomatica'
}
file { '/home/rhizomatica/bin/monitor_amp.sh':
ensure => present,
source => "puppet:///modules/rhizo_base/monitor_amp.sh.${bts_amps}",
}
file { '/home/rhizomatica/bin/monitor_freeswitch.sh':
ensure => present,
content => template('rhizo_base/monitor_freeswitch.sh.erb'),
}
file { '/home/rhizomatica/bin/vars.sh':
ensure => present,
content => template('rhizo_base/vars.sh.erb'),
owner => 'root',
group => 'operator'
}
file { '/home/rhizomatica/bin/pg_backup_rotated.sh':
source => 'puppet:///modules/rhizo_base/bin/pg_backup_rotated.sh',
owner => 'root',
group => 'postgres'
}
recursive_file_permissions { '/home/rhizomatica/bin':
file_mode => '0750',
dir_mode => '0755',
owner => 'root',
}
$bts_user = { 'UmSite' => 'fairwaves@', 'UmSite1' => 'rhizomatica@', '2050M' => 'root@', '2050S' => 'root@',
'1020' => 'root@', '2100' => 'root@', 'ocsdr' => 'oc@', '1002' => 'root@' }
file { "/etc/profile.d/rccn-functions.sh":
ensure => present,
content => template('rhizo_base/rccn-functions.sh.erb'),
}
if ($lsbdistcodename == 'buster') {
file { '/etc/joe/joerc':
ensure => present,
source => 'puppet:///modules/rhizo_base/joerc.4.6',
require => Package['joe'],
}
}
file { '/var/rhizo_backups':
ensure => directory,
}
file { [ '/var/www',
'/var/www/html', ]:
ensure => directory,
}
file { [ '/var/www/html/index.html', ]:
source => 'puppet:///modules/rhizo_base/index.html',
}
file { '/var/rhizo_backups/postgresql':
ensure => directory,
owner => 'postgres',
group => 'postgres',
require => [ File['/var/rhizo_backups'],
Class['rhizo_base::postgresql']
]
}
file { '/var/rhizo_backups/sqlite':
ensure => directory,
require => File['/var/rhizo_backups'],
}
if ($notouchrepo == 0) {
$rsched = "always"
} else {
$rsched = "never"
}
service { 'apache2':
require => [ Package['apache2'], Vcsrepo['/var/rhizomatica'] ],
ensure => running,
}
vcsrepo { '/var/rhizomatica':
schedule => $rsched,
ensure => latest,
provider => git,
source => 'git@dev.rhizomatica.org:rhizomatica/rccn.git',
revision => 'master',
require => [ Package['git'] ],
notify => [ Exec['locale-gen'],
Exec['notify-freeswitch'],
Exec['restart-rapi'],
Exec['restart-smpp'],
Exec['restart-esme'],
Exec['rrd-p-create'],
Exec['rrd-n-create'], ],
}
vcsrepo { '/var/www/html/CGP':
schedule => 'onceday',
ensure => latest,
revision => 'rhizo/tic',
provider => git,
source => 'https://gitlab.tic-ac.org/Rhizomatica/CGP.git',
require => [ Package['git'] ],
}
vcsrepo { '/var/meas':
schedule => 'onceday',
ensure => latest,
provider => git,
# source => 'https://github.com/whyteks/meas_web.git',
source => 'https://gitlab.tic-ac.org/keith/meas_web.git',
revision => 'master',
require => [ Package['git'] ],
notify => [ Exec['restart-meas'] ],
}
vcsrepo { '/var/rates':
schedule => 'onceday',
ensure => latest,
revision => 'master',
provider => git,
source => 'git@dev.rhizomatica.org:rhizomatica/rates.git',
require => File['/root/.ssh/bsc_dev'],
}
file { '/home/rhizomatica/bin/collectd-graph-panel-hack':
source => 'puppet:///modules/rhizo_base/collectd-hack',
mode => '0750',
notify => Exec['notify-cgp-hack']
}
file { '/var/rhizomatica/rccn/config_values.py':
ensure => present,
content => template('rhizo_base/config_values.py.erb'),
require => Vcsrepo['/var/rhizomatica'],
notify => [ Exec['locale-gen'],
Exec['notify-freeswitch'],
Exec['restart-rapi'],
Exec['restart-smpp'],
Exec['restart-esme'], ],
}
file { '/var/rhizomatica/bts_defs.json':
ensure => present,
content => template('rhizo_base/bts_defs.json.erb'),
require => Vcsrepo['/var/rhizomatica'],
}
file { '/var/meas/www/meas-web/bts_defs.js':
ensure => present,
content => template('rhizo_base/bts_defs.js.erb'),
require => Vcsrepo['/var/meas'],
}
file { '/var/rhizomatica/bin/get_account_balance.sh':
ensure => present,
content => template('rhizo_base/get_account_balance.sh.erb'),
require => Vcsrepo['/var/rhizomatica'],
mode => '0755',
}
file { '/var/rhizomatica/bin/check_account_balance.sh':
ensure => present,
content => template('rhizo_base/check_account_balance.sh.erb'),
require => Vcsrepo['/var/rhizomatica'],
mode => '0755',
}
file { '/var/rhizomatica/rai/include/database.php':
ensure => present,
content => template('rhizo_base/database.php.erb'),
require => Vcsrepo['/var/rhizomatica'],
}
file { '/var/www/html/rai/js/localnet.json':
ensure => present,
content => template('rhizo_base/localnet.json.erb'),
}
if $operatingsystem == 'Debian' {
exec { 'locale-gen':
command => '/usr/sbin/locale-gen',
require => [ File['/var/rhizomatica/rccn/config_values.py'],
File['/etc/locale.gen'] ],
refreshonly => true,
}
}
if $operatingsystem == 'Ubuntu' {
exec { 'locale-gen':
command => '/usr/sbin/locale-gen',
require => [ File['/var/rhizomatica/rccn/config_values.py'],
File['/var/lib/locales/supported.d/local'] ],
refreshonly => true,
}
}
exec { 'notify-cgp-hack':
command => '/home/rhizomatica/bin/collectd-graph-panel-hack once',
refreshonly => true,
}
exec { 'notify-freeswitch':
command => '/home/rhizomatica/bin/notify-freeswitch.sh',
refreshonly => true,
}
exec { 'restart-freeswitch':
command => '/usr/bin/sv restart freeswitch',
require => Class['rhizo_base::runit'],
refreshonly => true,
}
exec { 'restart-rapi':
command => '/usr/bin/sv restart rapi',
require => Class['rhizo_base::runit'],
refreshonly => true,
}
exec { 'restart-smpp':
command => '/usr/bin/sv restart smpp',
require => Class['rhizo_base::runit'],
refreshonly => true,
}
exec { 'restart-meas':
command => '/usr/bin/sv restart meas-web',
require => Class['rhizo_base::runit'],
refreshonly => true,
}
exec { 'restart-esme':
command => '/usr/bin/sv restart esme',
require => Class['rhizo_base::runit'],
refreshonly => true,
}
exec { 'rrd-p-create':
command => '/var/rhizomatica/bin/platform_create_rrd.sh',
refreshonly => true,
}
exec { 'rrd-n-create':
command => '/var/rhizomatica/bin/network_create_rrd.sh',
refreshonly => true,
}
if $operatingsystem == 'Ubuntu' {
file { '/var/lib/locales/supported.d/local':
ensure => present,
source => 'puppet:///modules/rhizo_base/var/lib/locales/supported.d/local',
}
}
if $operatingsystem == 'Debian' {
file { '/etc/locale.gen':
ensure => present,
source => 'puppet:///modules/rhizo_base/etc/locale.gen',
}
}
# Files and scripts that will be used to (re)provision a connected BTS
# of the osmocom variety.
file { '/var/SysmoBTS':
ensure => directory,
source => 'puppet:///modules/rhizo_base/SysmoBTS',
owner => 'root',
group => 'root',
recurse => remote
}
$bts.each |Integer $i, Hash $b| {
file { "/var/SysmoBTS/osmo-bts_${i}.cfg":
ensure => present,
content => template('rhizo_base/osmo-bts-sysmo.cfg.erb'),
mode => '0640',
}
file { "/var/SysmoBTS/osmo-pcu_${i}.cfg":
ensure => present,
content => template('rhizo_base/osmo-pcu.cfg.erb'),
mode => '0640',
}
}
file { '/var/SysmoBTS/check.sh':
source => 'puppet:///modules/rhizo_base/SysmoBTS/check.sh',
mode => '0750'
}
file { '/var/SysmoBTS/provision.sh':
source => 'puppet:///modules/rhizo_base/SysmoBTS/provision.sh',
mode => '0750'
}
file { '/var/SysmoBTS/maint.sh':
source => 'puppet:///modules/rhizo_base/SysmoBTS/maint.sh',
mode => '0750'
}
file { '/var/SysmoBTS/opkg.sh':
source => 'puppet:///modules/rhizo_base/SysmoBTS/opkg.sh',
mode => '0750'
}
file { '/var/SysmoBTS/opkg-1.sh':
source => 'puppet:///modules/rhizo_base/SysmoBTS/opkg-1.sh',
mode => '0750'
}
file { '/var/SysmoBTS/opkg-split.sh':
source => 'puppet:///modules/rhizo_base/SysmoBTS/opkg-split.sh',
mode => '0750'
}
file { '/var/SysmoBTS/chk_masq':
source => 'puppet:///modules/rhizo_base/SysmoBTS/chk_masq',
mode => '0750'
}
file { '/var/SysmoBTS/scp-all.sh':
source => 'puppet:///modules/rhizo_base/SysmoBTS/scp-all.sh',
mode => '0750'
}
file { '/var/SysmoBTS/ssh-all.sh':
source => 'puppet:///modules/rhizo_base/SysmoBTS/ssh-all.sh',
mode => '0750'
}
file { '/var/log/rccn':
ensure => link,
target => '/var/rhizomatica/rccn/log',
require => [ Vcsrepo['/var/rhizomatica'] ],
}
file { '/var/www/meas':
ensure => link,
target => '/var/meas/www/meas-web',
require => [ Vcsrepo['/var/meas'] ],
}
file { '/var/www/html/rai':
ensure => link,
target => '/var/rhizomatica/rai',
require => [ Package['apache2'], Vcsrepo['/var/rhizomatica'] ],
}
file { '/var/www/html/rai/graphs':
ensure => link,
target => '/var/rhizomatica/rrd/graphs',
require => Vcsrepo['/var/rhizomatica'],
}
#Python modules
class { 'python':
version => 'system',
pip => true,
dev => true,
}
python::pip { 'python-iptables':
schedule => 'onceweek',
ensure => '1.0.1',
pkgname => 'python-iptables',
}
if $operatingsystem == 'Debian' {
python::pip { 'twisted':
schedule => 'onceweek',
ensure => '13.1.0',
pkgname => 'Twisted',
}
python::pip { 'corepost':
schedule => 'onceweek',
ensure => 'present',
pkgname => 'CorePost',
}
}
python::pip { 'gsm0338':
schedule => 'onceweek',
ensure => '1.0.0',
pkgname => 'gsm0338',
}
python::pip { 'python-ESL':
schedule => 'onceweek',
ensure => 'present',
pkgname => 'python-ESL',
require => Class['rhizo_base::packages']
}
python::pip { 'csvkit':
schedule => 'onceweek',
ensure => 'present',
pkgname => 'csvkit',
}
file { '/usr/lib/python2.7/dist-packages':
ensure => directory,
source => 'puppet:///modules/rhizo_base/usr/lib/python2.7/dist-packages',
recurse => remote,
require => Class['python'],
}
file { '/etc/apcupsd/apcupsd.conf':
ensure => present,
source => 'puppet:///modules/rhizo_base/etc/apcupsd/apcupsd.conf',
require => Package['apcupsd'],
}
service { 'collectd':
provider => 'systemd',
enable => true,
ensure => 'running',
}
file { '/etc/collectd/collectd.conf':
ensure => present,
content => template('rhizo_base/collectd.conf.erb'),
require => Package['collectd'],
notify => Service['collectd']
}
file { '/etc/default/apcupsd':
ensure => 'present',
content => template('rhizo_base/apcupsd.erb'),
}
file { '/etc/tinc/rhizomatica/tinc-up':
ensure => 'present',
content => template('rhizo_base/tinc-up.erb'),
owner => 'root',
mode => '750'
}
$comment = $production ? {
0 => '#',
1 => '',
default => ''
}
unless $notouchcron == 1 {
file { '/etc/cron.d/rhizomatica':
ensure => 'present',
content => template('rhizo_base/rhizomatica.cron.erb'),
}
}
host { 'mail':
ip => '10.23.0.11',
}
file { '/etc/aliases':
ensure => 'present',
source => 'puppet:///modules/rhizo_base/etc/aliases'
}
file { '/etc/msmtprc':
ensure => 'present',
content => template('rhizo_base/msmtprc.erb')
}
systemd::unit_file { 'sshtunnel.service':
content => template("rhizo_base/sshtunnel.service.erb")
}
service { [ 'sshtunnel' ]:
provider => 'systemd',
enable => true,
ensure => 'running'
}
sshkey { 'dev_host_key':
name => 'dev.rhizomatica.org',
ensure => present,
key => hiera('rhizo::dev_host_key'),
type => 'ssh-rsa',
}
if $has_ip6 == "1" {
file { '/etc/network/ip6t-default':
ensure => 'present',
content => template('rhizo_base/ip6tables.erb'),
notify => Exec['ip6t-reset'],
}
file { '/etc/sysctl.d/10-ipv6.conf':
ensure => 'absent'
}
exec { 'ip6-activate':
command => "/sbin/sysctl net.ipv6.conf.all.disable_ipv6=0"
}
} else {
file { '/etc/sysctl.d/10-ipv6.conf':
content => "net.ipv6.conf.all.disable_ipv6=1\n"
}
}
exec { 'ip6t-reset':
refreshonly => true,
command => '/sbin/ip6tables-restore < /etc/network/ip6t-default'
}
}
Reference in a new issue View git blame Copy permalink