Projet

Général

Profil

Paste
Télécharger au format
Statistiques
| Branche: | Révision:

root @ e9f2be06

# Date Auteur Commentaire
e9f2be06 2023-01-29 12:31 Tim Meusel

Add Rocky 8 and 9 support
16a77dfe 2023-01-29 12:29 Tim Meusel

Merge pull request #160 from nbarrientos/alma

Declare AlmaLinux8 and AlmaLinux9 support
509ef14f 2023-01-29 12:29 Tim Meusel

Merge pull request #149 from hugendudel/netdev_support

Allow netdev as table family in defined type nftables::chain
9e100a98 2023-01-29 12:17 Nacho Barrientos

Add acceptance test covering tables of type netdev
50882817 2023-01-29 10:12 Nacho Barrientos

Declare AlmaLinux8 and AlmaLinux9 support
f6db8f10 2023-01-27 14:36 Tim Meusel

Merge pull request #159 from voxpupuli/maint/systemd-4.0.0

bump puppet/systemd to < 5.0.0
609ec267 2023-01-27 12:57 Joshua Hoblitt

bump puppet/systemd to < 5.0.0
069c9fd2 2023-01-07 08:12 Tim Meusel

Merge pull request #157 from duritong/set-file-dir-mode-to-what-rpm-has

Align filemode on RedHat to distro default
0b7bcb5d 2023-01-04 05:01 mh

Align filemode on RedHat to distro default

The RPM acutally ships the configuration and directory with
0600/0700 while this module sets the mode to 0640/0750.

However, this has the drawback that on new nftables RPM versions,
we are setting it back to the modules mode and triggering an nft...
0e7fe75e 2022-12-20 11:32 duritong

Merge pull request #156 from voxpupuli/modulesync

modulesync 5.4.0
b090ecb3 2022-12-20 10:31 Tim Meusel

modulesync 5.4.0
3d29b320 2022-10-25 13:43 Tim Meusel

[blacksmith] Bump version to 2.6.1-rc0
4cbaa4b9 2022-10-25 13:42 Tim Meusel

Merge pull request #154 from bastelfreak/rel260

Release 2.6.0
61491646 2022-10-25 09:30 Tim Meusel

Release 2.6.0
7d2ccb78 2022-10-25 09:24 Tim Meusel

Merge pull request #153 from bastelfreak/hkp

Add class for outgoing HKP firewalling
a1f09048 2022-10-24 16:59 Tim Meusel

Add class for outgoing HKP firewalling
ee6bfd8b 2022-10-24 11:25 Tim Meusel

Merge pull request #152 from bastelfreak/ubuntu

Add Ubuntu support
2eedc861 2022-10-24 11:09 Tim Meusel

Add Ubuntu support
0ebba4f9 2022-10-02 10:22 Tim Meusel

Merge pull request #151 from voxpupuli/modulesync

modulesync 5.3.0
404e2017 2022-10-02 10:03 Tim Meusel

modulesync 5.3.0
cdd872a9 2022-09-07 08:34 Harm Endres

Allow netdev as table family in defined type nftables::chain
665a4827 2022-09-04 16:45 Tim Meusel

Merge pull request #148 from duritong/split-conntrack-mgmt

split conntrack management into dedicated classes
9e42547b 2022-09-04 16:35 mh

split conntrack management into dedicated classes so they get consumeable
77503f49 2022-09-02 13:24 Tim Meusel

Merge pull request #147 from traylenator/file

New nftables::file type to include raw file
331b8d85 2022-09-01 05:22 Steve Traylen

New nftables::file type to include raw file

For example:

```puppet
nftables::file{'geoip':
content => "include \"/files/geoipsets/dbip/*.ipv4\"\n",
}
```

will right a file or content into the nftables configuration.

The file written will be included in configuration....
753540f1 2022-08-26 09:57 Steve Traylen

[blacksmith] Bump version to 2.5.1-rc0
51fdbc8b 2022-08-26 09:56 Steve Traylen

Merge pull request #145 from voxpupuli/rel250

Release 2.5.0
3b8f5945 2022-08-26 08:33 Steve Traylen

Release 2.5.0
9d61323e 2022-08-26 07:47 Steve Traylen

Merge pull request #144 from duritong/fix-143-properly-escape-rulename

Properly escape bridge in rulename
500ffee8 2022-08-25 04:00 Steve Traylen

Merge pull request #142 from luisfdez/feat/noflush-bridge

Add all nftables families as a valid noflush pattern
cb38423a 2022-08-24 03:06 mh

fix #143 - properly escape rulename for interfaces
1d7eb86a 2022-08-24 02:46 mh

remove duplicate expect

this is handled by the next - more specific - expect anyways
1fd3f550 2022-08-19 09:07 Luis Fernández Álvarez

Add all families as a valid noflush pattern

nftables has more valid families than the ones currently accepted by the
module.

This patch adds support for all the families currently supported as per
the documentation at:
https://wiki.nftables.org/wiki-nftables/index.php/Nftables_families
0b5de65a 2022-07-11 04:53 Tim Meusel

[blacksmith] Bump version to 2.4.1-rc0
47f82dd8 2022-07-11 04:52 Tim Meusel

Merge pull request #141 from bastelfreak/rel240

Release 2.4.0
60f3e2e6 2022-07-11 04:43 Tim Meusel

Release 2.4.0
df905959 2022-07-11 04:32 Tim Meusel

Merge pull request #139 from bastelfreak/ntp

chrony: Allow filtering for outgoing NTP servers
7937a13b 2022-07-11 04:18 Tim Meusel

chrony: Allow filtering for outgoing NTP servers
45ad24ff 2022-07-11 04:17 Tim Meusel

Merge pull request #140 from bastelfreak/whois

Add rule to allow outgoing whois queries
2b1896c1 2022-07-10 06:42 Tim Meusel

Add rule to allow outgoing whois queries
f1c87156 2022-07-07 11:14 Tim Meusel

Merge pull request #138 from bastelfreak/pxp

Add class for pxp-agent firewalling
9ad64784 2022-07-07 11:04 Tim Meusel

Update manifests/rules/pxp_agent.pp

Co-authored-by: Steve Traylen <>
194e05d5 2022-07-07 08:53 Tim Meusel

Add class for outgoing PXP connections
7f74df2e 2022-07-07 08:10 Tim Meusel

Add class for pxp-agent firewalling
4a166db8 2022-07-06 08:55 Tim Meusel

[blacksmith] Bump version to 2.3.1-rc0
54708ee4 2022-07-06 08:54 Steve Traylen

Merge pull request #137 from bastelfreak/rel230

Release 2.3.0
821ec83a 2022-07-06 08:37 Tim Meusel

Release 2.3.0
8647ee9e 2022-07-06 08:35 Tim Meusel

Merge pull request #134 from bastelfreak/dev-debian_support

Add Debian support
008c95d7 2022-07-06 02:31 Kienan Stewart

Add Debian support
462a783f 2022-07-05 14:28 Tim Meusel

Merge pull request #136 from bastelfreak/debian2

systemctl: Use relative path
cc9fc807 2022-07-05 12:04 Tim Meusel

systemctl: Use relative path
18ed4d80 2022-07-05 09:07 Tim Meusel

Merge pull request #133 from bastelfreak/echo

make path to echo configureable
7fb93f38 2022-07-05 08:50 Tim Meusel

make path to echo configureable
e8ee67c1 2022-07-05 08:35 Tim Meusel

Merge pull request #132 from bastelfreak/binary

make path to `nft` binary configureable
8842a597 2022-07-05 08:23 Tim Meusel

make path to `nft` binary configureable
a7142e9f 2022-05-02 05:35 Steve Traylen

Merge pull request #131 from nbarrientos/next_rc

Prepare next release candidate
533f31ac 2022-05-02 05:24 Nacho Barrientos

Prepare next release candidate
d2b07706 2022-05-02 05:22 Nacho Barrientos

Merge pull request #130 from nbarrientos/release_221

Prepare release 2.2.1
f4dcddd6 2022-04-27 10:37 Nacho Barrientos

Prepare release 2.2.1
817e064b 2022-03-09 04:04 Tim Meusel

Merge pull request #128 from traylenator/systemd

rspec mock systemd process on docker
18d983c3 2022-03-08 03:16 Tim Meusel

Merge pull request #129 from voxpupuli/modulesync

modulesync 5.2.0
435a5db2 2022-03-08 02:59 Steve Traylen

rspec mock systemd process on docker

On docker rspec the service provider is autodetected as redhat
rather than systemd.

https://tickets.puppetlabs.com/browse/PUP-11167

That causes

```
error during compilation: Parameter enable failed on Service[firewalld]: Provider redhat must have features 'maskable' to set 'enable' to 'mask' (file: /builds/ai/it-puppet-module-nftables/code/spec/fixtures/modules/nftables/manifests/init.pp, line: 186)...
117519ce 2022-03-08 02:49 Tim Meusel

Enable parameter_documentation/parameter_types checks
0893064d 2022-03-08 02:46 Tim Meusel

modulesync 5.2.0
232c1364 2022-03-08 02:08 Steve Traylen

Migrate from deprecated mocha
5679c81e 2022-02-28 03:09 Romain Tartière

Merge pull request #127 from nbarrientos/ibarrien_tw
cd4cf212 2022-02-28 01:43 Nacho Barrientos

Remove trailing whitespace
a50b9a6f 2022-02-27 12:24 hashworks

[blacksmith] Bump version to 2.2.1-rc0
b3a590e0 2022-02-27 12:19 Justin Kromlinger

Merge pull request #126 from voxpupuli/release/2_2_0

Prepare release 2.2.0
d0a1ffef 2022-02-27 12:03 hashworks

Prepare release 2.2.0
c3145917 2022-02-27 11:32 Justin Kromlinger

Merge pull request #124 from hashworks/feature/ArchLinuxSupport

Add support for Arch Linux
0c9bc308 2022-02-27 11:05 hashworks

Add support for Arch Linux

Arch Linux stores the configuration in a different path and does not
provide firewalld without explicit installation.

This basically the same as #66 – I've reused their code since it hasn't
been merged in a while.
d8b8b3f4 2022-02-27 11:04 Justin Kromlinger

Merge pull request #125 from hashworks/fix/serviceRemainAfterExit

Ensure that nftables.service remains active after it exits
9de35746 2022-02-27 10:49 hashworks

Ensure that nftables.service remains active after it exits

Some system-packages don't include it in the service-file and we expect
it. See #124.
d1988178 2022-02-26 12:53 Tim Meusel

Merge pull request #112 from keachi/ospf_protocol

Use protocol number instead of label
aa90278c 2022-02-26 11:01 Justin Kromlinger

Merge pull request #122 from hashworks/fix/referenceInitialExamples

Fix typos in initial reference examples
2063deaf 2022-02-26 09:19 hashworks

Fix typos in initial reference examples
cc892515 2022-02-09 03:33 Steve Traylen

Merge pull request #121 from traylenator/paramdocs

vp-puppet-lint-plugin enables param-docs already
8290c1d2 2022-02-09 03:26 Nacho Barrientos

Merge pull request #120 from nbarrientos/rhel9

Declare support for RHEL9, CentOS9 and OL9
432af5d3 2022-02-08 11:12 Nacho Barrientos

Make sure that the list of interfaces is mocked

If 'networking' is not removed from the facts, the values declared in
`default_module_facts.yml` win (the fact set contains two keys:
`:networking` and `'networking'`)

This test has always been wrong as the interfaces were never been...
b6280d21 2022-02-08 09:41 Steve Traylen

vp-puppet-lint-plugin enables param-docs already

No need to enable puppet-lint-param-docs locally since version 3.0.0
of voxpupuli-puppet-lint-plugins enables param-docs anyway.

https://github.com/voxpupuli/voxpupuli-puppet-lint-plugins/commit/5c207d586878162218e45ce50bcfd927588796c9
73ae6061 2022-02-08 09:25 Nacho Barrientos

Declare support for RHEL9, CentOS9 and OL9
bd8993d5 2021-12-17 11:28 Steve Traylen

Merge pull request #118 from traylenator/rubocop

Rubocop corrections for rubocop 1.22.3
b5874974 2021-12-16 09:54 Steve Traylen

rubocop - RSpec/RepeatedExampleGroupBody
6c2f0f10 2021-12-16 09:26 Steve Traylen

rubocop -f RSpec/RepeatedExampleGroupDescription
c82b960a 2021-12-16 08:55 Steve Traylen

rubocop:auto_correct results
20eaf3c2 2021-12-15 14:40 Tim Stallmann

modulesync 5.1.0
cbe342b9 2021-11-17 01:51 tr

Use protocol number instead of label

The label was `ospf` and will be `ospfigp` in the future. Instead of
creating a map use the protocol number to be compatible with newer
versions.
9ea14bc0 2021-09-18 02:11 Tim Meusel

Merge pull request #110 from voxpupuli/modulesync

modulesync 4.2.0
fa92e118 2021-09-17 21:35 Romain Tartière

Pet rubocop
5fea281f 2021-09-17 21:33 Tim Stallmann

modulesync 4.2.0
407adb54 2021-09-17 21:33 Romain Tartière

Fix .sync.yml

Typo introduced in 09cba1822af345c6fe7d4db1a49921f12a53cb31
f92dda0b 2021-09-14 07:28 Christos Papageorgiou

Merge pull request #109 from cernops/ibarrien_rc
c069ddfd 2021-09-14 06:59 Nacho Barrientos

Release 2.1.1-rc0
f9d3ba1c 2021-09-14 06:57 Nacho Barrientos

Merge pull request #108 from cernops/release_210

Prepare release 2.1.0
b02d6ea9 2021-09-14 02:57 Nacho Barrientos

Prepare release 2.1.0
1cdd8e24 2021-09-07 09:43 duritong

Merge pull request #107 from figless/nat_table_name

support a different table name for 'nat'
fcb79d73 2021-09-07 05:37 Ben Morrice

support a different table name for 'nat'
- Some applications (such as libvirt) still use iptables to inject firewall
rules
- iptables will refuse to update tables that were initially created with nft
- This commit allows defining the name of the 'nat' table in order to avoid...
faaec410 2021-08-25 17:55 Romain Tartière

Merge pull request #106 from voxpupuli/stdlib
4de7163a 2021-08-25 13:41 Romain Tartière

Allow stdlib 8.0.0