Projet

Général

Profil

Paste
Télécharger au format
Statistiques
| Branche: | Révision:

root / spec @ 4c3d5d6b

Nom Taille Révision Âge Auteur Commentaire
  acceptance d7d6d5d3 plus d'un an Tim Meusel simplerule: Add support for outgoing interface ...
  classes 4c3d5d6b plus d'un an Tim Meusel rules::mdns: Allow interface filtering
  defines 825f4eb1 plus d'un an Tim Skirvin trying out a spec to mix port arrays and ranges
  type_aliases d7bd6638 plus d'un an Tim Skirvin spec update to confirm that port ranges work
  unit 232c1364 environ 3 ans Steve Traylen Migrate from deprecated mocha
default_module_facts.yml 2,18 ko fd0eaeca plus de 4 ans tr Add class bridges Allow traffic from any bridg...
spec_helper.rb 1,17 ko 435a5db2 environ 3 ans Steve Traylen rspec mock systemd process on docker On docker...
spec_helper_acceptance.rb 301 octets b0b538e0 presque 2 ans Tim Meusel modulesync 7.0.0

Dernières révisions

# Date Auteur Commentaire
4c3d5d6b 2023-12-31 07:57 Tim Meusel

rules::mdns: Allow interface filtering
51850192 2023-12-31 07:57 Tim Meusel

rules::out::mdns: Allow interface filtering
8cdd24a5 2023-12-29 10:23 Tim Meusel

rules::icmp: Allow ICMP packets with extensions
eac19d14 2023-12-20 14:51 Tim Meusel

Make "dropping invalid packets" configureable

It doesn't make sense to explicitly drop those pakets when the default
policy is already `DROP`. Also some applications, like ceph, are known
to send packets that might be marked as invalid.
d7d6d5d3 2023-12-20 13:31 Tim Meusel

simplerule: Add support for outgoing interface filtering
9d1ee648 2023-12-20 04:41 Tim Meusel

rules::out:dns: refactor for better readability
25b3f3f4 2023-12-19 12:36 Tim Meusel

simplerule: Add support for incoming interface filtering
67cdcf15 2023-11-24 02:52 Steve Traylen

Support input interface specification to dns server

Useful when you want to allow docker/podman containers
access to a hosts dns stub resolver.

```puppet
class{'nftables::rules::dns':
iifname => ['docker0'],
}
```
b5633532 2023-11-23 02:46 Tim Meusel

Merge pull request #189 from tskirvin/master

nftables::simplerule::dport - takes port ranges as part of the array
08b9f1d0 2023-11-22 03:53 Steve Traylen

Additional rules for podman root containers

This class defines additional forwarding rules to let root containers
reach external networks when using Netavark (since v4.0) or CNI (deprecated).
At the time of writing, Podman supports automatic configuration...

Voir les révisions

Formats disponibles : Atom