| 607 |
607 |
|
| 608 |
608 |
The following parameters are available in the `nftables::rules::out::puppet` class.
|
| 609 |
609 |
|
| 610 |
|
##### `puppetmaster`
|
|
610 |
##### `puppetserver`
|
| 611 |
611 |
|
| 612 |
|
Data type: `Variant[String,Array[String,1]]`
|
|
612 |
Data type: `Variant[Stdlib::IP::Address,Array[Stdlib::IP::Address,1]]`
|
| 613 |
613 |
|
| 614 |
614 |
|
| 615 |
615 |
|
| ... | ... | |
| 795 |
795 |
|
| 796 |
796 |
The following parameters are available in the `nftables::config` defined type.
|
| 797 |
797 |
|
|
798 |
##### `tablespec`
|
|
799 |
|
|
800 |
Data type: `Pattern[/^\w+-\w+$/]`
|
|
801 |
|
|
802 |
|
|
803 |
|
|
804 |
Default value: `$title`
|
|
805 |
|
| 798 |
806 |
##### `content`
|
| 799 |
807 |
|
| 800 |
808 |
Data type: `Optional[String]`
|
| ... | ... | |
| 811 |
819 |
|
| 812 |
820 |
Default value: ``undef``
|
| 813 |
821 |
|
|
822 |
##### `prefix`
|
|
823 |
|
|
824 |
Data type: `String`
|
|
825 |
|
|
826 |
|
|
827 |
|
|
828 |
Default value: `'custom-'`
|
|
829 |
|
| 814 |
830 |
### `nftables::rule`
|
| 815 |
831 |
|
| 816 |
832 |
manage a chain rule
|
| ... | ... | |
| 1107 |
1123 |
|
| 1108 |
1124 |
manage a named set
|
| 1109 |
1125 |
|
|
1126 |
#### Examples
|
|
1127 |
|
|
1128 |
##### simple set
|
|
1129 |
|
|
1130 |
```puppet
|
|
1131 |
nftables::set{'my_set':
|
|
1132 |
type => 'ipv4_addr',
|
|
1133 |
flags => ['interval'],
|
|
1134 |
elements => ['192.168.0.1/24', '10.0.0.2'],
|
|
1135 |
auto_merge => true,
|
|
1136 |
}
|
|
1137 |
```
|
|
1138 |
|
| 1110 |
1139 |
#### Parameters
|
| 1111 |
1140 |
|
| 1112 |
1141 |
The following parameters are available in the `nftables::set` defined type.
|
| ... | ... | |
| 1115 |
1144 |
|
| 1116 |
1145 |
Data type: `Enum['present','absent']`
|
| 1117 |
1146 |
|
| 1118 |
|
|
|
1147 |
should the set be created.
|
| 1119 |
1148 |
|
| 1120 |
1149 |
Default value: `'present'`
|
| 1121 |
1150 |
|
| ... | ... | |
| 1123 |
1152 |
|
| 1124 |
1153 |
Data type: `Pattern[/^[-a-zA-Z0-9_]+$/]`
|
| 1125 |
1154 |
|
| 1126 |
|
|
|
1155 |
name of set, equal to to title.
|
| 1127 |
1156 |
|
| 1128 |
1157 |
Default value: `$title`
|
| 1129 |
1158 |
|
| ... | ... | |
| 1131 |
1160 |
|
| 1132 |
1161 |
Data type: `Pattern[/^\d\d$/]`
|
| 1133 |
1162 |
|
| 1134 |
|
|
|
1163 |
concat ordering.
|
| 1135 |
1164 |
|
| 1136 |
1165 |
Default value: `'10'`
|
| 1137 |
1166 |
|
| ... | ... | |
| 1139 |
1168 |
|
| 1140 |
1169 |
Data type: `Optional[Enum['ipv4_addr', 'ipv6_addr', 'ether_addr', 'inet_proto', 'inet_service', 'mark']]`
|
| 1141 |
1170 |
|
| 1142 |
|
|
|
1171 |
type of set.
|
| 1143 |
1172 |
|
| 1144 |
1173 |
Default value: ``undef``
|
| 1145 |
1174 |
|
| ... | ... | |
| 1147 |
1176 |
|
| 1148 |
1177 |
Data type: `String`
|
| 1149 |
1178 |
|
| 1150 |
|
|
|
1179 |
table to add set to.
|
| 1151 |
1180 |
|
| 1152 |
1181 |
Default value: `'inet-filter'`
|
| 1153 |
1182 |
|
| ... | ... | |
| 1155 |
1184 |
|
| 1156 |
1185 |
Data type: `Array[Enum['constant', 'dynamic', 'interval', 'timeout'], 0, 4]`
|
| 1157 |
1186 |
|
| 1158 |
|
|
|
1187 |
specify flags for set
|
| 1159 |
1188 |
|
| 1160 |
1189 |
Default value: `[]`
|
| 1161 |
1190 |
|
| ... | ... | |
| 1163 |
1192 |
|
| 1164 |
1193 |
Data type: `Optional[Integer]`
|
| 1165 |
1194 |
|
| 1166 |
|
|
|
1195 |
timeout in seconds
|
| 1167 |
1196 |
|
| 1168 |
1197 |
Default value: ``undef``
|
| 1169 |
1198 |
|
| ... | ... | |
| 1171 |
1200 |
|
| 1172 |
1201 |
Data type: `Optional[Integer]`
|
| 1173 |
1202 |
|
| 1174 |
|
|
|
1203 |
garbage collection interval.
|
| 1175 |
1204 |
|
| 1176 |
1205 |
Default value: ``undef``
|
| 1177 |
1206 |
|
| ... | ... | |
| 1179 |
1208 |
|
| 1180 |
1209 |
Data type: `Optional[Array[String]]`
|
| 1181 |
1210 |
|
| 1182 |
|
|
|
1211 |
initialize the set with some elements in it.
|
| 1183 |
1212 |
|
| 1184 |
1213 |
Default value: ``undef``
|
| 1185 |
1214 |
|
| ... | ... | |
| 1187 |
1216 |
|
| 1188 |
1217 |
Data type: `Optional[Integer]`
|
| 1189 |
1218 |
|
| 1190 |
|
|
|
1219 |
limits the maximum number of elements of the set.
|
| 1191 |
1220 |
|
| 1192 |
1221 |
Default value: ``undef``
|
| 1193 |
1222 |
|
| ... | ... | |
| 1195 |
1224 |
|
| 1196 |
1225 |
Data type: `Optional[Enum['performance', 'memory']]`
|
| 1197 |
1226 |
|
| 1198 |
|
|
|
1227 |
determines set selection policy.
|
| 1199 |
1228 |
|
| 1200 |
1229 |
Default value: ``undef``
|
| 1201 |
1230 |
|
| ... | ... | |
| 1203 |
1232 |
|
| 1204 |
1233 |
Data type: `Boolean`
|
| 1205 |
1234 |
|
| 1206 |
|
|
|
1235 |
?
|
| 1207 |
1236 |
|
| 1208 |
1237 |
Default value: ``false``
|
| 1209 |
1238 |
|
| ... | ... | |
| 1211 |
1240 |
|
| 1212 |
1241 |
Data type: `Optional[String]`
|
| 1213 |
1242 |
|
| 1214 |
|
|
|
1243 |
specify content of set.
|
| 1215 |
1244 |
|
| 1216 |
1245 |
Default value: ``undef``
|
| 1217 |
1246 |
|
| ... | ... | |
| 1219 |
1248 |
|
| 1220 |
1249 |
Data type: `Optional[Variant[String,Array[String,1]]]`
|
| 1221 |
1250 |
|
| 1222 |
|
|
|
1251 |
specify source of set.
|
| 1223 |
1252 |
|
| 1224 |
1253 |
Default value: ``undef``
|
| 1225 |
1254 |
|
| ... | ... | |
| 1247 |
1276 |
|
| 1248 |
1277 |
The following parameters are available in the `nftables::simplerule` defined type.
|
| 1249 |
1278 |
|
|
1279 |
##### `ensure`
|
|
1280 |
|
|
1281 |
Data type: `Enum['present','absent']`
|
|
1282 |
|
|
1283 |
Should the rule be created.
|
|
1284 |
|
|
1285 |
Default value: `'present'`
|
|
1286 |
|
| 1250 |
1287 |
##### `rulename`
|
| 1251 |
1288 |
|
| 1252 |
1289 |
Data type: `Pattern[/^[-a-zA-Z0-9_]+$/]`
|
| ... | ... | |
| 1352 |
1389 |
|
| 1353 |
1390 |
Default value: ``false``
|
| 1354 |
1391 |
|
| 1355 |
|
##### `ensure`
|
| 1356 |
|
|
| 1357 |
|
Data type: `Enum['present','absent']`
|
| 1358 |
|
|
| 1359 |
|
|
| 1360 |
|
|
| 1361 |
|
Default value: `'present'`
|
| 1362 |
|
|
| 1363 |
1392 |
## Data types
|
| 1364 |
1393 |
|
| 1365 |
1394 |
### `Nftables::Addr`
|