#!/bin/sh -e
redo_exim() {
+ touch /var/domtool/local_domains.cfg /var/domtool/relay_domains.cfg /var/domtool/mailman_domains.cfg
/bin/echo -n "domainlist local_domains = " >/etc/exim4/conf.d/main/10_domtool-domains
/bin/cat /var/domtool/local_domains.cfg >>/etc/exim4/conf.d/main/10_domtool-domains
/bin/echo "" >>/etc/exim4/conf.d/main/10_domtool-domains
/bin/echo -n "domainlist mm_domains = " >>/etc/exim4/conf.d/main/10_domtool-domains
/bin/cat /var/domtool/mailman_domains.cfg >>/etc/exim4/conf.d/main/10_domtool-domains
/bin/echo "" >>/etc/exim4/conf.d/main/10_domtool-domains
- /etc/init.d/exim4 reload
+ service exim4 reload
}
case $1 in
apache)
/usr/bin/rsync -r --delete /var/domtool/vhosts/ /etc/apache2/vhosts/
- /etc/init.d/apache2 reload
+ service apache2 reload
;;
apache-down)
- /etc/init.d/apache2 stop
+ service apache2 stop
;;
apache-undown)
/usr/bin/rsync -r --delete /var/domtool/vhosts/ /etc/apache2/vhosts/
- /etc/init.d/apache2 start
+ service apache2 start
;;
apache1.3)
/usr/bin/rsync -r --delete /var/domtool/vhosts/ /etc/apache/vhosts/
- /etc/init.d/apache reload
+ service apache reload
;;
apache1.3-down)
- /etc/init.d/apache stop
+ service apache stop
;;
apache1.3-undown)
/usr/bin/rsync -r --delete /var/domtool/vhosts/ /etc/apache/vhosts/
- /etc/init.d/apache start
+ service apache start
;;
bind)
/usr/bin/rsync -r --delete /var/domtool/zones/ /etc/bind/zones/
/bin/cp /var/domtool/named.conf.local /etc/bind/
/bin/chown root:bind /etc/bind/named.conf.local
/bin/chmod 644 /etc/bind/named.conf.local
- /etc/init.d/bind9 restart
+ service bind9 restart
;;
exim)
+ touch /var/domtool/aliases /var/domtool/aliases.default
/bin/cp /var/domtool/aliases /etc/aliases.hosted
/bin/cp /var/domtool/aliases.default /etc/aliases.wildcard
redo_exim
/bin/echo "HCOOP_VHOSTS = {" >/etc/mailman/vhosts_cfg.py
/bin/cat /var/domtool/mailman.map >>/etc/mailman/vhosts_cfg.py
/bin/echo "}" >>/etc/mailman/vhosts_cfg.py
- /etc/init.d/mailman reload
+ service mailman reload
redo_exim
;;
courier)
;;
users)
/bin/cp /var/domtool/waklog.conf /etc/apache2/
- /etc/init.d/apache2 reload
+ service apache2 reload
;;
firewall)
# Ideally this would check if the config worked first
# least). Does it need to chown/chmod the generated
# rules?
/bin/cp /var/domtool/firewall/*.conf /etc/ferm/
- /etc/init.d/ferm reload
+ service ferm reload
+ ;;
+ firewallpuppet)
+ # new firewall publishing method that integrates with puppet (sort of)
+ /bin/cp /var/domtool/firewall/*.conf /etc/ferm/
+ if [ ! -d /etc/puppetlabs ]; then
+ # legacy node
+ service ferm reload
+ exit
+ fi
+ if ( /usr/sbin/ferm --noexec /etc/ferm/ferm.conf ); then
+ for chain in FERM-INPUT FERM-OUTPUT; do
+ /sbin/iptables -F $chain
+ /sbin/ip6tables -F $chain
+
+ /usr/sbin/ferm --domain ip --noexec --lines /etc/ferm/ferm.conf | iptables-restore --noflush
+ /usr/sbin/ferm --domain ip6 --noexec --lines /etc/ferm/ferm.conf | ip6tables-restore --noflush
+ done
+ else
+ echo "firewall: ferm failed, aborting regeneration."
+ fi
;;
*)
echo "Usage: domtool-publish [apache|bind|courier|exim|mailman|smtplog STRING|users|firewall]"
HCoop / hcoop / domtool2.git / blobdiff