Projet

Général

Profil

Paste
Télécharger au format
Statistiques
| Branche: | Révision:

root / spec / defines @ 9d1ee648

Nom Taille Révision Âge Auteur Commentaire
  rules c82b960a plus de 3 ans Steve Traylen rubocop:auto_correct results
chain_spec.rb 4,36 ko 7030bde0 environ 2 ans Luis Fernández Álvarez Add bridge as a valid family for chain tables
config_spec.rb 3,81 ko 0b7bcb5d plus de 2 ans mh Align filemode on RedHat to distro default The...
file_spec.rb 2,69 ko 331b8d85 plus de 2 ans Steve Traylen New nftables::file type to include raw file Fo...
rule_spec.rb 5,75 ko c82b960a plus de 3 ans Steve Traylen rubocop:auto_correct results
set_spec.rb 5,87 ko c82b960a plus de 3 ans Steve Traylen rubocop:auto_correct results
simplerule_spec.rb 7,96 ko 825f4eb1 plus d'un an Tim Skirvin trying out a spec to mix port arrays and ranges

Dernières révisions

# Date Auteur Commentaire
825f4eb1 2023-11-08 13:37 Tim Skirvin

trying out a spec to mix port arrays and ranges
7030bde0 2023-03-23 05:28 Luis Fernández Álvarez

Add bridge as a valid family for chain tables
0b7bcb5d 2023-01-04 05:01 mh

Align filemode on RedHat to distro default

The RPM acutally ships the configuration and directory with
0600/0700 while this module sets the mode to 0640/0750.

However, this has the drawback that on new nftables RPM versions,
we are setting it back to the modules mode and triggering an nft...
331b8d85 2022-09-01 05:22 Steve Traylen

New nftables::file type to include raw file

For example:

```puppet
nftables::file{'geoip':
content => "include \"/files/geoipsets/dbip/*.ipv4\"\n",
}
```

will right a file or content into the nftables configuration.

The file written will be included in configuration....
c82b960a 2021-12-16 08:55 Steve Traylen

rubocop:auto_correct results
fa92e118 2021-09-17 21:35 Romain Tartière

Pet rubocop
fcb79d73 2021-09-07 05:37 Ben Morrice

support a different table name for 'nat'
- Some applications (such as libvirt) still use iptables to inject firewall
rules
- iptables will refuse to update tables that were initially created with nft
- This commit allows defining the name of the 'nat' table in order to avoid...
c94658e1 2021-07-06 11:46 Nacho Barrientos

Allow declaring the same set in several tables

Closes #100
bd8baa0f 2021-04-26 12:27 Nacho Barrientos

Fix IPv4 source address type detection

Before this patch, a rule like this:

```
nftables::simplerule { 'foo':
action => 'accept',
dport => 443,
proto => 'tcp4',
saddr => '192.168.1.10',
}
```

would incorrectly generate this rule:...
14156fb6 2021-01-27 06:48 Nacho Barrientos

Add unit test

Voir les révisions

Formats disponibles : Atom