/ - Diff - puppet nftables - Koumbit's Redmine

Révision 64404839

Ajouté par Tim Meusel il y a plus d'un an

samba: Add option to drop traffic

     The following parameters are available in the `nftables::rules::samba` class:
     * [`ctdb`](#-nftables--rules--samba--ctdb)
     * [`action`](#-nftables--rules--samba--action)
     ##### <a name="-nftables--rules--samba--ctdb"></a>`ctdb`
     Data type: `Boolean`
     Enable ctdb-driven clustered Samba setups.
     Enable ctdb-driven clustered Samba setups
     Default value: `false`
     ##### <a name="-nftables--rules--samba--action"></a>`action`
     Data type: `Enum['accept', 'drop']`
     if the traffic should be allowed or dropped
     Default value: `'accept'`
     ### <a name="nftables--rules--smtp"></a>`nftables::rules::smtp`
     manage in smtp

     # @summary manage Samba, the suite to allow Windows file sharing on Linux resources.
     # @param ctdb Enable ctdb-driven clustered Samba setups.
+    #
     # @param ctdb Enable ctdb-driven clustered Samba setups
     # @param action if the traffic should be allowed or dropped
+    #
     class nftables::rules::samba (
       Boolean $ctdb = false,
       Enum['accept', 'drop'] $action = 'accept',
     ) {
       nftables::rule {
         'default_in-netbios_tcp':
           content => 'tcp dport {139,445} accept',
           content => "tcp dport {139,445} ${action}",
+      }
       nftables::rule {
         'default_in-netbios_udp':
           content => 'udp dport {137,138} accept',
           content => "udp dport {137,138} ${action}",
+      }
       if $ctdb {
         nftables::rule {
           'default_in-ctdb':
             content => 'tcp dport 4379 accept',
             content => "tcp dport 4379 ${action}",
+        }
+      }
+    }

Formats disponibles : Unified diff