/templates/systemd/puppet_nft.conf.epp - Changements - puppet nftables - Koumbit's Redmine

Télécharger au format

root / templates / systemd / puppet_nft.conf.epp @ b4558e94

Historique | Voir | Annoter | Télécharger (227 octets)

#	Date	Auteur	Commentaire
b4558e94	2021-01-18 16:35	Kienan Stewart	Use /usr/sbin for nft binary path in systemd service /sbin in Debian Buster is a symbolic link to /usr/sbin; however, in Debian Stretch it's a separate folder and the nft binary is in /usr/sbin/nft. Note: this commit probably breaks support for CentOS, but I'm not planning on requesting to merge this commit...
a86c6409	2021-01-18 14:00	Kienan Stewart	Convert puppet_nft systemd drop-in unit file to template
ce22630b	2020-12-09 05:37	Steve Traylen	Remove duplicate flush on reload When nftables was reloaded a flush was being done both in the systemd reload call and in the nft script itself.
03d9e7da	2020-12-01 03:09	Steve Traylen	New parameter noflush_tables to selectivly skip flush Introduces a new structured fact nftables ```yaml nftables: tables: - inet-filter - ip-nat - ip6-nat - inet-f2b-table ``` By default the nft script will continue to contain `nft flush ruleset`...