summaryrefslogtreecommitdiff
path: root/manifests
AgeCommit message (Collapse)Author
2017-04-09make it possible to manage rules for ipv4 & ipv6 + add some more modern ↵mh
headers for certain versions
2017-04-09make output nicermh
2017-04-08migrate to dedicated paramsmh
2017-04-08introduce params4 and params6 helper to more easily differentiatemh
2017-04-08introduce params only for ipv6 and only for ipv4mh
2017-04-08introduce params for shorewall6, by default it's just a copy of the ones for ↵mh
shorewall
2017-04-08broadcast column is not needed for shorewall6mh
2017-04-08manage interfaces for shorewall6mh
2017-04-08cleanup certain unsupported optionsmh
2017-04-08group that togethermh
2017-04-07rename snippetmh
2017-04-07add mgmt of files for shorewall6mh
2017-04-07make zones also for ipv6mh
2017-04-07make dependencies a bit more clearmh
2017-04-07fix pathmh
2017-04-07correct namingmh
2017-04-07first step towards shorewall6, basic service is runningmh
2017-04-07calculate whether we want to disable ipv6 (if there is no public ipv6 ↵mh
address) or not
2017-02-19no need for openvpn outgoingmh
2017-01-14Merge pull request #13 from marknl/masterduritong
Conntrack support
2017-01-13Merge remote-tracking branch 'github/master'mh
2017-01-13correct decisionmh
2017-01-13also support the older versionsmh
2017-01-12Merge branch 'master' into masterduritong
2017-01-12Merge pull request #15 from marknl/patch-2duritong
Added $host option
2017-01-12Use $name for backwards compatibilityMarknl
2017-01-12connect docu with classmh
2017-01-12Merge remote-tracking branch 'github/master'mh
2017-01-11Brought $name back into the game for backw. compatMarknl
2017-01-10Added $host optionMarknl
Current rule.pp converts the $name into the "HOST" parameter in the file, this can result in these definitions: ```shorewall::host { 'eth0:$VPN_HOSTS': zone => 'vpn', options => 'ipsec', order => 200; }``` I suggest moving the variable usage from the $name into a $host parameter, so above example becomes: ```shorewall::host { 'vpn-hosts': zone => 'vpn', host => 'eth0:$VPN_HOSTS', options => 'ipsec', order => 200; }```
2016-12-27Conntrack helperMarknl
2016-12-27Added conntrack to managed filesMarknl
2016-09-23add tor out rulemh
2016-06-29* fix rule sectionLebedev Vadim
2016-06-26older puppet versions can't yet dealt with thatmh
2016-06-26modernize so we don't need to deploy a full config file anymoremh
2016-06-25make this a booleanmh
2016-06-25this is only needed on EL6mh
2016-05-28the section requires a ? since EL6mh
2016-04-29Merge branch 'master' of https://github.com/duritong/puppet-shorewallLebedev Vadim
Conflicts: manifests/debian.pp manifests/managed_file.pp
2016-04-29* fix permissionLebedev Vadim
2015-12-05linting for future parsermh
2015-12-05check shorewall daily on problems to alert if a rule won't compilemh
2015-12-05lintingmh
2015-12-05make service restart more failsafemh
2015-12-05add razor rulesmh
2015-12-05make it possible to create resources from hieramh
2015-12-05DeprecatedSylvain Veyrié
2015-12-05Non string mode is now deprecatedSylvain Veyrié
2015-12-05fix the missing includemh