include-by-hostname hack
This commit is contained in:
parent
0222d53f28
commit
0cff6770c3
|
@ -1,4 +0,0 @@
|
|||
|
||||
@def $NET_DMZ = 12.168.5.5/24;
|
||||
|
||||
|
|
@ -3,7 +3,10 @@
|
|||
# Configuration file for ferm(1).
|
||||
#
|
||||
|
||||
# host
|
||||
@hook pre "#";
|
||||
@hook pre "# Entr'ouvert firewall config, generated by ferm";
|
||||
@hook pre "#";
|
||||
|
||||
@def $IP_WAN = 176.31.123.109;
|
||||
@def $DEV_WAN = eth0;
|
||||
|
||||
|
@ -33,8 +36,8 @@
|
|||
# supervision servers (munin, nagios)
|
||||
@def $SUPERVISORS = (212.85.154.22 88.190.46.145);
|
||||
|
||||
@include 'config.d/';
|
||||
@include 'pre.d/';
|
||||
@include './include-by-hostname config.d|';
|
||||
@include './include-by-hostname pre.d|';
|
||||
|
||||
# $VMS = 1 if there are VMs with public IPs
|
||||
@def $VMS = 0;
|
||||
|
@ -44,7 +47,6 @@
|
|||
@if $NET_VMS_PRIVATE @if $DEV_VMS_PRIVATE @def $VMS_PRIVATE = 1;
|
||||
|
||||
# output some debug informations
|
||||
@hook pre "# (c) entr'ouvert";
|
||||
@hook post "# VMS = $VMS";
|
||||
@hook post "# VMS_PRIVATE = $VMS_PRIVATE";
|
||||
|
||||
|
@ -197,6 +199,5 @@ table filter {
|
|||
outerface $DEV_WAN
|
||||
SNAT to $IP_WAN;
|
||||
|
||||
@include 'local.d/';
|
||||
@include 'post.d/';
|
||||
@include './include-by-hostname post.d|';
|
||||
|
||||
|
|
|
@ -0,0 +1,10 @@
|
|||
#!/bin/sh
|
||||
|
||||
INCLUDE=$1/`hostname -f`
|
||||
if [ ! -r $INCLUDE ]; then
|
||||
echo "ERROR:no-file-$INCLUDE"
|
||||
else
|
||||
echo '@hook pre "# File included: '$INCLUDE'";'
|
||||
cat $INCLUDE
|
||||
fi
|
||||
|
Reference in New Issue