Age | Commit message (Collapse) | Author | |
---|---|---|---|
2018-11-09 | Merge remote-tracking branch 'shared/master'HEADmaster | kwadronaut | |
2018-05-02 | Add missing parameter in host.pp | Jérôme Charaoui | |
2018-05-02 | Merge branch 'libvirt-puppet4' into 'master' | Jérôme Charaoui | |
Puppet 4 compatibility. See merge request shared-puppet-modules-group/shorewall!15 | |||
2018-04-05 | Puppet 4 compatibility. | intrigeri | |
2018-04-05 | Merge branch 'SECTION' into 'master' | intrigeri | |
This fixes the ?SECTION change. See merge request shared-puppet-modules-group/shorewall!14 | |||
2018-04-05 | Merge branch 'routefilter' into 'master' | intrigeri | |
routefilter is also not an ipv6 possible option See merge request shared-puppet-modules-group/shorewall!13 | |||
2018-03-24 | This fixes the ?SECTION change. | Micah Anderson | |
The change requiring ? before SECTION happened in 4.6.0. Our check was only looking at the major version to see if it was 4, and if so, it would not add the ?. This was too imprecise and would not add the ? in versions of shorewall 4.6 and greater. So this commit will change that check to be more specific. | |||
2018-03-24 | The blacklist option should not be set by default, it should only be added when | Micah Anderson | |
you are actually going to blacklist things. Otherwise you get this warning from shorewall_check each day: WARNING: There are interfaces or zones with the 'blacklist' option, but the 'blacklist' file is either missing or has zero size Also, the README for this module notes that this option is deprecated upstream, and so we should remove it. | |||
2018-03-23 | routefilter is also not a valid ipv6 option | Micah Anderson | |
2018-03-23 | Merge branch 'fix_8' into 'master' | Micah | |
Remove $puppetserver_signport, fixes #8 Closes #8 See merge request shared-puppet-modules-group/shorewall!12 | |||
2018-02-16 | Remove $puppetserver_signport, fixes #8 | Jerome Charaoui | |
ng lavamind: this is an acient relict, where there was a problem signing through apache ng and then we had a mongrel running on that port | |||
2018-01-13 | Merge remote-tracking branch 'origin/master' into immerda_merge | Micah Anderson | |
2018-01-13 | Merge remote-tracking branch 'immerda/master' into immerda_merge | Micah Anderson | |
2018-01-09 | Merge branch 'concat_update' into 'master' | Jérôme Charaoui | |
Concat update See merge request shared-puppet-modules-group/shorewall!11 | |||
2018-01-09 | Don't transitively pass $ensure parameter to concat::fragment | intrigeri | |
Follow up on commit 851c51659961724a1457e3de1bbe9591390b1e82. | |||
2017-11-22 | Don't pass $ensure parameter to concat::fragment | Jerome Charaoui | |
It has been removed in the latest version of puppetlabs-concat | |||
2017-11-02 | switch to the new facts hash | mh | |
2017-09-24 | linting | mh | |
2017-09-24 | make sure shorewall6 is started after shorewall | mh | |
as inserting fw rules into iptables can't be properly serialized. This is a backport of a fix that went into shorewall 5.1.6 by commit 0603f8e355b19ca88d2a7ad6f181767092e02e00 in the shorewall repository. | |||
2017-08-30 | make ipv6 tuneable | mh | |
2017-08-29 | correctly set shorewall6 option for puppetserver config | mh | |
2017-08-29 | fix param name | mh | |
2017-08-29 | there is no ipv6 support there yet | mh | |
2017-08-24 | make sure we also en/disable it based on the right setting | mh | |
2017-08-24 | delete the old way | mh | |
2017-08-24 | workaround a bug in facter that sets ipaddress6 to ipv4 addresses | mh | |
2017-08-03 | make it possible to set v6 and v6 puppetserver | mh | |
2017-07-19 | add mosh support | mh | |
2017-07-06 | to make the previous commit work, we should also remove the ensure from fragment | mh | |
2017-07-05 | linting | mh | |
2017-07-05 | make ensure a noop for concat::framet, as from puppetlabs-concat 4.0.1 on ↵ | mh | |
this is removed and concat purges non-managed fragments | |||
2017-06-23 | fix filename rename | Micah Anderson | |
2017-06-23 | Merge branch 'master' into puppet4 | Micah Anderson | |
2017-05-21 | remove an unnecessary dep | mh | |
2017-05-08 | try to be extra cautious when restarting and do it with the try, so nothing ↵ | mh | |
breaks if something is broken that is not connected at compile time | |||
2017-05-08 | don't notify the service | mh | |
2017-05-01 | correct snippet | mh | |
2017-05-01 | this is IPv4 only so far | mh | |
2017-05-01 | also support EL6 style files | mh | |
2017-05-01 | add missing package for EL6 | mh | |
2017-04-25 | add missing file | mh | |
2017-04-25 | we should start managing also that file | mh | |
2017-04-25 | manage policies for shorewall6 | mh | |
2017-04-25 | make it possibble to disable ipv6 for these rules | mh | |
2017-04-25 | enable shorewall6 rules by default | mh | |
2017-04-25 | suffix it with _IP6, so we can have duplicate definitions with IPv4 shorewall | mh | |
2017-04-25 | suffix it with _IP6, so we can have duplicate definitions with IPv4 shorewall | mh | |
2017-04-15 | linting | mh | |
2017-04-09 | minor linting | mh | |
2017-04-09 | make it possible to manage rules for ipv4 & ipv6 + add some more modern ↵ | mh | |
headers for certain versions |