Skip to content
/ puppet-sitefirewall Public

provides sensible defaults for extra classes as required for puppetlabs/firewall

1 star 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

danfoster/puppet-sitefirewall

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
manifests
manifests
 
 
spec
spec
 
 
tests
tests
 
 
.fixtures.yml
.fixtures.yml
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
Gemfile
Gemfile
 
 
README.md
README.md
 
 
Rakefile
Rakefile
 
 
metadata.json
metadata.json
 
 

Repository files navigation

sitefirewall

Travis CI

Table of Contents

  1. Overview
  2. Module Description - What the module does and why it is useful
  3. Setup - The basics of getting started with sitefirewall
  4. Usage - Configuration options and additional functionality
  5. Reference - An under-the-hood peek at what the module is doing and how
  6. Limitations - OS compatibility, etc.
  7. Development - Guide for contributing to the module

Overview

This module provides sensible defaults for extra classes as required for puppetlabs/firewall.

Module Description

This module defines defeaults for pre and post firewall rules. These are:

  • Allow IMCP
  • Allow all traffic to local (lo) interface
  • Allow RELATED and ESTABLISHED connections
  • Drop all other traffic

Setup

What sitefirewall affects

This module depends on puppet/firewall and therefore affects the following:

  • Every node running a firewall
  • Firewall settings in your system
  • Connection settings for managed nodes
  • Unmanaged resources (get purged)

Usage

Include sitefirewall to get started:

class { '::sitefirewall' }

Then you are able to use firewall rules as described on the (puppetlabs/firewall)[https://forge.puppetlabs.com/puppetlabs/firewall#usage] page.

Hiera

Firewall rules can also be defined in hiera using the firewall key .e.g.:

firewall:
  '10 accept SSH':
    port: 22
    proto: tcp
    action: accept

Development

Pull requests are gratefully received.

About

provides sensible defaults for extra classes as required for puppetlabs/firewall

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages