]> WPIA git - infra.git/blobdiff - environments/production/manifests/root.pp
projects / infra.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
fix: accept dp to work with current gigi and others
[infra.git] / environments / production / manifests / root.pp
diff --git a/environments/production/manifests/root.pp b/environments/production/manifests/root.pp
index 9adaee13767d6152e3f55e235247cfb506bb779d..c193f9a9dcb04e92dea3a17be01b7816830c66ef 100644 (file)
--- a/environments/production/manifests/root.pp
+++ b/environments/production/manifests/root.pp
@@ -44,6 +44,16 @@ class my_fw::post {
     table => 'nat',
     chain => 'PREROUTING'
   } ->
+  firewall {'80 dnatv6-hop-ssh':
+    provider => 'ip6tables',
+    proto  => 'tcp',
+    dport => '2222',
+    jump => 'DNAT',
+    todest => "[${$ipsv6[hop]}]:22",
+    iniface => $internet_iface,
+    table => 'nat',
+    chain => 'PREROUTING'
+  } ->
   firewall {'80 MASQ-v6':
     provider => 'ip6tables',
     chain => 'POSTROUTING',
WPIA Technical Infrastructure