diff options
author | kwadronaut <kwadronaut@leap.se> | 2018-11-09 10:03:32 +0100 |
---|---|---|
committer | kwadronaut <kwadronaut@leap.se> | 2018-11-09 10:03:32 +0100 |
commit | 74ebf6e34723573a23bf0e758978fb3969e362f8 (patch) | |
tree | 6abed2eb699e572c418d25d9969b2f4b083a83c0 /templates | |
parent | 06e89ed3486916ae12186e46b8ec59c8c7c79142 (diff) | |
parent | cabbf434c1778cb4e8fe2f7f726a012f707cd2a5 (diff) |
Diffstat (limited to 'templates')
-rw-r--r-- | templates/blrules.erb | 15 | ||||
-rw-r--r-- | templates/debian_default.erb | 2 |
2 files changed, 16 insertions, 1 deletions
diff --git a/templates/blrules.erb b/templates/blrules.erb new file mode 100644 index 0000000..4c9af79 --- /dev/null +++ b/templates/blrules.erb @@ -0,0 +1,15 @@ +# +# Shorewall version 4.4 - Rule-based Blacklisting +# +# For information about entries in this file, type "man shorewall-blrules" +# +# Please see http://shorewall.net/blacklisting_support.htm for additional +# information. +# +############################################################################### +<% @whitelists.each do |value| -%> +WHITELIST <%= value %> +<% end -%> +<% @drops.each do |value| -%> +REJECT <%= value %> +<% end -%> diff --git a/templates/debian_default.erb b/templates/debian_default.erb index ec64cbe..8a9e328 100644 --- a/templates/debian_default.erb +++ b/templates/debian_default.erb @@ -3,7 +3,7 @@ # This file is brought to you by puppet -startup=<%= scope.lookupvar('shorewall::startup') == "0" ? '0' : '1' %> +startup=<%= ['0',false].include?(scope['shorewall::startup']) ? '0' : '1' %> # if your Shorewall configuration requires detection of the ip address of a ppp # interface, you must list such interfaces in "wait_interface" to get Shorewall to |