puppet/modules/site_shorewall/manifests/defaults.pp


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26

class site_shorewall::defaults {
  include shorewall

  # If you want logging:
  shorewall::params {
    'LOG': value => 'debug';
  }

  shorewall::zone {'net': type => 'ipv4'; }

  shorewall::rule_section { 'NEW': order => 10; }

  case $shorewall_rfc1918_maineth {
    '': {$shorewall_rfc1918_maineth = true }
  }

  case $shorewall_main_interface {
    '': { $shorewall_main_interface = 'eth0' }
  }

  shorewall::interface {$shorewall_main_interface:
    zone      => 'net',
    rfc1918   => $shorewall_rfc1918_maineth,
    options   => 'tcpflags,blacklist,nosmurfs';
  }
}