Add rule to allow ruby gem downloads for Puppet
authorJan Dittberner <jan@dittberner.info>
Tue, 4 Sep 2018 19:47:11 +0000 (21:47 +0200)
committerJan Dittberner <jan@dittberner.info>
Tue, 4 Sep 2018 19:47:11 +0000 (21:47 +0200)
hieradata/nodes/proxyout.yaml

index 8a966b2..e0e2ff2 100644 (file)
@@ -8,6 +8,7 @@ profiles::squid::acls:
     - "localnet src 10.0.0.0/24"
     - "localnet src 172.16.2.0/24"
     - "jenkins src 172.16.2.115"
+    - "puppet src 172.16.2.10"
     - "debmirror dstdomain .debian.org"
     - "debpgsql dstdomain apt.postgresql.org"
     - "debmariadb dstdomain mirror2.hs-esslingen.de"
@@ -21,8 +22,10 @@ profiles::squid::acls:
     - "debjenkins dstdomain mirror.esuni.jp"
     - "debjenkins dstdomain ftp.yz.yamagata-u.ac.jp"
     - "debjenkins dstdomain mirrors.tuna.tsinghua.edu.cn"
+    - "rubygems dstdomain api.rubygems.org"
 profiles::squid::http_access:
     - "allow localnet debmirror"
     - "allow localnet debpuppet"
     - "allow localnet debmariadb"
     - "allow jenkins debjenkins"
+    - "allow puppet rubygems"