Example how to redirect one port to another
Add example how to redirect traffic from one port to another.
[blacksmith] Bump version to 3.4.1-rc0
Merge pull request #212 from bastelfreak/rel340
Release 3.4.0
Merge pull request #213 from vchepkov/systemd
allow puppet/systemd v6
Merge pull request #211 from bastelfreak/debian12
Add Debian 12 support
Merge pull request #208 from vchepkov/ftp
add ftp helper
This adds ability to enable a connection tracker helper and provides typical ftp rules
Co-authored-by: Vadym Chepkov <vchepkov@gmail.com>Co-authored-by: Yury Bushmelev <jay4mail@gmail.com>
Merge pull request #209 from vchepkov/rejects
provide an option to disable logging rejected packets
[blacksmith] Bump version to 3.3.1-rc0
Merge pull request #205 from bastelfreak/rel330
Release 3.3.0
Merge pull request #204 from voxpupuli/netbios
samba: Add option to drop traffic
Merge pull request #203 from voxpupuli/wsd
Add nftables rules for ws-discovery
Merge pull request #202 from voxpupuli/ssdp
Add rule for incoming SSDP
Merge pull request #201 from voxpupuli/llmnr
Add rule for incoming LLMNR
init.pp: disable check_unsafe_interpolations
[blacksmith] Bump version to 3.2.1-rc0
Merge pull request #200 from bastelfreak/rel320
Release 3.2.0
Merge pull request #199 from bastelfreak/omcast
Add rule for outgoing multicast DNS
Merge pull request #198 from bastelfreak/mlds
Add rule for multicast listener requests (MLDv2)
Merge pull request #197 from ekohl/mdns-v6
Rewrite mdns rules to limit to multicast and allow IPv6
This limits the mdns listener to only listen on multicast addresses withport 5353. One rule for IPv4 and one for IPv6, each controllable with aparameter.
The generic 5353 to 5353 rule is dropped since it's redundant when I...
Merge pull request #195 from voxpupuli/modulesync
modulesync 7.0.0
Regenerate REFERENCE.md
Merge pull request #194 from bastelfreak/multicast
Add rules for IGMP
Merge pull request #193 from bastelfreak/mdns
mDNS: Allow udp port 5353
Merge pull request #191 from bastelfreak/multicast
Add rule to allow multicast DNS
Merge pull request #192 from bastelfreak/spot
Add rule to allow incoming spotify broadcast
Merge pull request #190 from bastelfreak/multicast
Add rule to allow incoming multicast traffic
Merge pull request #187 from javier-angulo/fix/184
change parameters order: required before optional
Merge pull request #180 from traylenator/upper
fix #184: Add unit string for timeout,gc-interval
[blacksmith] Bump version to 3.1.1-rc0
Merge pull request #186 from bastelfreak/rel310
Release 3.1.0
Merge pull request #185 from bastelfreak/concat
puppetlabs/concat: Allow 9.x
Merge pull request #182 from voxpupuli/stdlib9_20230723
puppetlabs/stdlib: Allow 9.x
Declare stdlib v9 support
Merge pull request #181 from traylenator/p8
Declare puppet v8 support
[blacksmith] Bump version to 3.0.2-rc0
Merge pull request #179 from SimonHoenscheid/release-3.0.1
Release 3.0.1
Merge pull request #177 from SimonHoenscheid/ldap_ad_out_rulesets
add ldap and active directory rules
Merge pull request #176 from canihavethisone/master
Increased puppet/systemd upper limit to < 6.0.0
[blacksmith] Bump version to 3.0.1-rc0
Merge pull request #175 from voxpupuli/release-3.0.0
Release 3.0.0
Merge pull request #172 from voxpupuli/modulesync
modulesync 6.0.0
Merge pull request #173 from traylenator/dropp6
Drop puppet 6 support
Merge pull request #170 from canihavethisone/master
Raise puppetlabs/concat upper limit to < 9.0.0
Merge pull request #171 from traylenator/ref
Refresh REFERENCE
Merge pull request #169 from baldurmen/icinga-typo
Fix typo in icinga2 rule documentation
Merge pull request #168 from voxpupuli/modulesync
modulesync 5.5.0
[blacksmith] Bump version to 2.6.2-rc0
Merge pull request #166 from voxpupuli/rel/261
Release 2.6.1
Merge pull request #165 from luisfdez/feat/bridge-chain
Add bridge as a valid family for chain tables
Merge pull request #162 from anarcat/basic-readme
README improvements
fix nft sample command
I don't know what the nfc command is, but it certainly looks like atypo. Also, the flag to include a directory is `-I` here, not `-L`.
cleanup: more style and markup editing
add basic usage instructions right at the top
I couldn't figure out how to use this module when I looked at theREADME. It was quickly going into pretty arcane stuff like "inetfilter" and "ip nat table" which might make sense for the moduleauthors or people used to nftables/iptables, but are pretty...
Merge pull request #161 from bastelfreak/rocky
Add Rocky 8 and 9 support
Merge pull request #160 from nbarrientos/alma
Declare AlmaLinux8 and AlmaLinux9 support
Merge pull request #149 from hugendudel/netdev_support
Allow netdev as table family in defined type nftables::chain
Add acceptance test covering tables of type netdev
Merge pull request #159 from voxpupuli/maint/systemd-4.0.0
bump puppet/systemd to < 5.0.0
