puppet nftables

Merge pull request #225 from voxpupuli/nftables

Make "dropping invalid packets" configureable

Merge pull request #224 from voxpupuli/nftables

simplerule: Add support for outgoing interface filtering

Merge pull request #222 from bastelfreak/refactor

rules::out:dns: refactor for better readability

Merge pull request #221 from voxpupuli/nftables

simplerule: Add support for incoming interface filtering

Merge pull request #220 from voxpupuli/modulesync

modulesync 7.2.0

modulesync 7.2.0

Document what the 'auto_merge' parameter does.

modulesync 7.1.0

Merge pull request #216 from traylenator/release-3.4.1

Release 3.5.0

Merge pull request #215 from traylenator/dnsiface

Support input interface specification to dns server

Merge pull request #189 from tskirvin/master

nftables::simplerule::dport - takes port ranges as part of the array

Merge pull request #183 from traylenator/redirect

Example how to redirect one port to another

Additional rules for podman root containers

This class defines additional forwarding rules to let root containers
reach external networks when using Netavark (since v4.0) or CNI (deprecated).
At the time of writing, Podman supports automatic configuration...

Merge pull request #212 from bastelfreak/rel340

Release 3.4.0

Merge pull request #213 from vchepkov/systemd

allow puppet/systemd v6

Merge pull request #211 from bastelfreak/debian12

Add Debian 12 support

Merge pull request #208 from vchepkov/ftp

add ftp helper

trying out a spec to mix port arrays and ranges

Merge branch 'voxpupuli:master' into master

provide an option to disable logging rejected packets

Merge pull request #205 from bastelfreak/rel330

Release 3.3.0

Merge pull request #204 from voxpupuli/netbios

samba: Add option to drop traffic

samba: Add option to drop traffic

Merge pull request #202 from voxpupuli/ssdp

Add rule for incoming SSDP

Merge pull request #201 from voxpupuli/llmnr

Add rule for incoming LLMNR

Add rule for incoming LLMNR

[blacksmith] Bump version to 3.2.1-rc0

Release 3.2.0

Add rule for outgoing multicast DNS

Add rule for multicast listener requests (MLDv2)

Rewrite mdns rules to limit to multicast and allow IPv6

This limits the mdns listener to only listen on multicast addresses with
port 5353. One rule for IPv4 and one for IPv6, each controllable with a
parameter.

The generic 5353 to 5353 rule is dropped since it's redundant when I...

Regenerate REFERENCE.md

REFERENCE.md changes to match

Add rules for IGMP

Merge pull request #191 from bastelfreak/multicast

Add rule to allow multicast DNS

mDNS: Allow udp port 5353

Merge pull request #192 from bastelfreak/spot

Add rule to allow incoming spotify broadcast

Merge pull request #190 from bastelfreak/multicast

Add rule to allow incoming multicast traffic

nftables::simplerule::dport - takes port ranges as part of the array

addresses issue 188

change parameters order: required before optional

fix #184: Add unit string for timeout,gc-interval

Merge pull request #186 from bastelfreak/rel310

Release 3.1.0

Merge pull request #185 from bastelfreak/concat

puppetlabs/concat: Allow 9.x

Merge pull request #182 from voxpupuli/stdlib9_20230723

Declare stdlib v9 support

Declare puppet v8 support

Merge pull request #179 from SimonHoenscheid/release-3.0.1

Release 3.0.1

Merge pull request #177 from SimonHoenscheid/ldap_ad_out_rulesets

add ldap and active directory rules

Merge pull request #176 from canihavethisone/master

Increased puppet/systemd upper limit to < 6.0.0

[blacksmith] Bump version to 3.0.1-rc0