summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJan Dittberner <jan@dittberner.info>2018-09-04 21:47:11 +0200
committerJan Dittberner <jan@dittberner.info>2018-09-04 21:47:11 +0200
commit9c575651a8ef1047cb489af037a74ad1d4529be3 (patch)
tree3aa9ec504a4351e61aab72a3b0b20860f0a3359f
parent8469912b874df9e0a26fea0bf9acf8f383dc03ba (diff)
downloadcacert-puppet-9c575651a8ef1047cb489af037a74ad1d4529be3.tar.gz
cacert-puppet-9c575651a8ef1047cb489af037a74ad1d4529be3.tar.xz
cacert-puppet-9c575651a8ef1047cb489af037a74ad1d4529be3.zip
Add rule to allow ruby gem downloads for Puppet
-rw-r--r--hieradata/nodes/proxyout.yaml3
1 files changed, 3 insertions, 0 deletions
diff --git a/hieradata/nodes/proxyout.yaml b/hieradata/nodes/proxyout.yaml
index 8a966b2..e0e2ff2 100644
--- a/hieradata/nodes/proxyout.yaml
+++ b/hieradata/nodes/proxyout.yaml
@@ -8,6 +8,7 @@ profiles::squid::acls:
- "localnet src 10.0.0.0/24"
- "localnet src 172.16.2.0/24"
- "jenkins src 172.16.2.115"
+ - "puppet src 172.16.2.10"
- "debmirror dstdomain .debian.org"
- "debpgsql dstdomain apt.postgresql.org"
- "debmariadb dstdomain mirror2.hs-esslingen.de"
@@ -21,8 +22,10 @@ profiles::squid::acls:
- "debjenkins dstdomain mirror.esuni.jp"
- "debjenkins dstdomain ftp.yz.yamagata-u.ac.jp"
- "debjenkins dstdomain mirrors.tuna.tsinghua.edu.cn"
+ - "rubygems dstdomain api.rubygems.org"
profiles::squid::http_access:
- "allow localnet debmirror"
- "allow localnet debpuppet"
- "allow localnet debmariadb"
- "allow jenkins debjenkins"
+ - "allow puppet rubygems"