## Mirrors a block device over the network to another machine. ######################################## ## ## Execute a domain transition to ## run drbd. ## ## ## ## Domain allowed to transition. ## ## # interface(`drbd_domtrans',` gen_require(` type drbd_t, drbd_exec_t; ') corecmd_search_bin($1) domtrans_pattern($1, drbd_exec_t, drbd_t) ') ######################################## ## ## All of the rules required to ## administrate an drbd environment. ## ## ## ## Domain allowed access. ## ## ## ## ## Role allowed access. ## ## ## # interface(`drbd_admin',` gen_require(` type drbd_t, drbd_initrc_exec_t, drbd_lock_t; type drbd_var_lib_t; ') allow $1 drbd_t:process { ptrace signal_perms }; ps_process_pattern($1, drbd_t) init_startstop_service($1, $2, drbd_t, drbd_initrc_exec_t) files_search_locks($1) admin_pattern($1, drbd_lock_t) files_search_var_lib($1) admin_pattern($1, drbd_var_lib_t) ')