Projet

Général

Profil

Paste
Télécharger au format
Statistiques
| Branche: | Révision:

root / manifests @ 802d80d1

Nom Taille Révision Âge Auteur Commentaire
  rules 79e9a23f plus de 4 ans Nacho Barrientos Move ICMP stuff to separate classes
  services 215aee13 plus de 4 ans Steve Traylen Add kerberos out and openafs_client out
bridges.pp 601 octets 579e27df plus de 4 ans tr Fix the regex for bridge names
chain.pp 1,59 ko 30462da1 plus de 4 ans Steve Traylen Reload rules atomically Background: The unit f...
config.pp 1,29 ko 30462da1 plus de 4 ans Steve Traylen Reload rules atomically Background: The unit f...
inet_filter.pp 3,83 ko 79e9a23f plus de 4 ans Nacho Barrientos Move ICMP stuff to separate classes
init.pp 4,45 ko 802d80d1 plus de 4 ans Nacho Barrientos Allow sourcing sets from Hiera
ip_nat.pp 1,53 ko 248ef9d5 plus de 4 ans tr Add basic ip6 nat chains
rule.pp 1,2 ko 61f03b47 plus de 4 ans Steve Traylen Switch $order$fragmenta/b to $order-$fragment-a/b
set.pp 1,93 ko 7bb485c5 plus de 4 ans Nacho Barrientos Allow dashes in set names

Dernières révisions

# Date Auteur Commentaire
802d80d1 2020-11-27 03:35 Nacho Barrientos

Allow sourcing sets from Hiera
82d10659 2020-11-26 15:39 Nacho Barrientos

Allow disabling default NAT tables and chains
30462da1 2020-11-26 05:19 Steve Traylen

Reload rules atomically

Background: The unit file for nftables on CentOS 8 contains:

```
ExecStart=/sbin/nft -f /etc/sysconfig/nftables.conf
ExecReload=/sbin/nft 'flush ruleset; include "/etc/sysconfig/nftables.conf";'
ExecStop=/sbin/nft flush ruleset
```...
92461926 2020-11-24 07:53 duritong

Merge pull request #16 from cernops/icmp

Move ICMP stuff to separate classes allowing better customisation
ae9872e2 2020-11-24 04:17 Nacho Barrientos

Make masking Service['firewalld'] configurable
79e9a23f 2020-11-21 03:10 Nacho Barrientos

Move ICMP stuff to separate classes
a5f5fb12 2020-11-19 15:56 duritong

Merge pull request #13 from traylenator/comment

Add comments for all the nftable::rules entries
21d0496e 2020-11-19 15:53 duritong

Merge pull request #14 from cernops/ct_away

Move conntrack rules from global to INPUT and OUTPUT
7b14f6d9 2020-11-19 15:11 keachi

Merge pull request #6 from traylenator/afs

Add rules for afs3_callback in and out rules for kerberos and openafs.
ea96d5db 2020-11-19 10:15 Nacho Barrientos

Move ct rules from global to INPUT and OUTPUT

Voir les révisions

Formats disponibles : Atom