summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2017-04-09make it possible to manage rules for ipv4 & ipv6 + add some more modern ↵mh
headers for certain versions
2017-04-09make output nicermh
2017-04-08migrate to dedicated paramsmh
2017-04-08introduce params4 and params6 helper to more easily differentiatemh
2017-04-08add missing filemh
2017-04-08introduce params only for ipv6 and only for ipv4mh
2017-04-08introduce params for shorewall6, by default it's just a copy of the ones for ↵mh
shorewall
2017-04-08broadcast column is not needed for shorewall6mh
2017-04-08add missing filemh
2017-04-08manage interfaces for shorewall6mh
2017-04-08cleanup certain unsupported optionsmh
2017-04-08add a full version fact and derive the maj from that one and make the fact ↵mh
work, even if there is no shorewall installed
2017-04-08group that togethermh
2017-04-07we need thismh
2017-04-07rename snippetmh
2017-04-07add mgmt of files for shorewall6mh
2017-04-07make zones also for ipv6mh
2017-04-07make dependencies a bit more clearmh
2017-04-07fix pathmh
2017-04-07correct namingmh
2017-04-07first step towards shorewall6, basic service is runningmh
2017-04-07calculate whether we want to disable ipv6 (if there is no public ipv6 ↵mh
address) or not
2017-02-19no need for openvpn outgoingmh
2017-02-03Merge remote-tracking branch 'shared/master'mh
2017-01-14Merge pull request #13 from marknl/masterduritong
Conntrack support
2017-01-13Merge remote-tracking branch 'github/master'mh
2017-01-13correct decisionmh
2017-01-13also support the older versionsmh
2017-01-13mory rubyismmh
2017-01-12Merge branch 'master' into masterduritong
2017-01-12Merge pull request #15 from marknl/patch-2duritong
Added $host option
2017-01-12Use $name for backwards compatibilityMarknl
2017-01-12connect docu with classmh
2017-01-12Merge remote-tracking branch 'github/master'mh
2017-01-11Brought $name back into the game for backw. compatMarknl
2017-01-10Added $host optionMarknl
Current rule.pp converts the $name into the "HOST" parameter in the file, this can result in these definitions: ```shorewall::host { 'eth0:$VPN_HOSTS': zone => 'vpn', options => 'ipsec', order => 200; }``` I suggest moving the variable usage from the $name into a $host parameter, so above example becomes: ```shorewall::host { 'vpn-hosts': zone => 'vpn', host => 'eth0:$VPN_HOSTS', options => 'ipsec', order => 200; }```
2016-12-27Conntrack helperMarknl
2016-12-27Added conntrack to managed filesMarknl
2016-12-27Create conntrack.footerMarknl
2016-12-27Create conntrack.headerMarknl
2016-09-23add tor out rulemh
2016-08-03Merge pull request #5 from abraham1901/masterduritong
* Add shorewall-blrules support
2016-06-29* add shorewal version facterLebedev Vadim
2016-06-29* fix rule sectionLebedev Vadim
2016-06-26older puppet versions can't yet dealt with thatmh
2016-06-26modernize so we don't need to deploy a full config file anymoremh
2016-06-25make this a booleanmh
2016-06-25modernize lookupmh
2016-06-25this is only needed on EL6mh
2016-06-13Merge branch 'augeas_is_neeed' into 'master' Micah
[bug] Augeas is still needed Without including `augeas` puppet would complain: Error: Could not find resource 'Class[Augeas]' for relationship on 'Class[Shorewall::Base]' on node default See merge request !6