Nie zawsze musimy korzystać z architektury klient-server. Czasem możemy po prostu wprowadzić reguły zapisane w plikach lokalnych:
[root@vz13505 manifests]# ls -l test_firewall.pp -rw-r--r-- 1 root root 158 Mar 2 13:18 test_firewall.pp [root@vz13505 manifests]# puppet apply test_firewall.pp Warning: Could not retrieve fact fqdn Notice: /Firewall[000 allow ssh]/ensure: created Notice: Finished catalog run in 0.46 seconds
[root@vz13505 manifests]# cat test_firewall.pp ## test of firewall module from puppet lab (modul: puppetlabs-firewall) firewall { '000 allow ssh': dport => 22, action => accept, proto => 'tcp', }