Puppet Class: rsyslog::server::tcpwrappers

Defined in:
manifests/server/tcpwrappers.pp

Overview

NOTE: THIS IS A PRIVATE CLASS

Sets up TCPWrappers for RSyslog both plain TCP and TCP over TLS as necessary

NOTE: This actually opens the TCPWrappers rules for RSyslog since testing has shown that it was prone to some odd connectivity errors. Both IPTables and an internal allow list protect RSyslog connections.



9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
# File 'manifests/server/tcpwrappers.pp', line 9

class rsyslog::server::tcpwrappers {
  assert_private()

  include '::tcpwrappers'

  if $::rsyslog::tcp_server {
    tcpwrappers::allow { 'syslog':
      pattern => 'ALL'
    }
  }

  if $::rsyslog::tls_tcp_server {
    tcpwrappers::allow { 'syslog_tls':
      pattern => 'ALL'
    }
  }
}