Age | Commit message (Collapse) | Author | |
---|---|---|---|
2017-01-12 | connect docu with class | mh | |
2017-01-12 | Merge remote-tracking branch 'github/master' | mh | |
2017-01-11 | Brought $name back into the game for backw. compat | Marknl | |
2017-01-10 | Added $host option | Marknl | |
Current rule.pp converts the $name into the "HOST" parameter in the file, this can result in these definitions: ```shorewall::host { 'eth0:$VPN_HOSTS': zone => 'vpn', options => 'ipsec', order => 200; }``` I suggest moving the variable usage from the $name into a $host parameter, so above example becomes: ```shorewall::host { 'vpn-hosts': zone => 'vpn', host => 'eth0:$VPN_HOSTS', options => 'ipsec', order => 200; }``` | |||
2016-12-27 | Conntrack helper | Marknl | |
2016-12-27 | Added conntrack to managed files | Marknl | |
2016-09-23 | add tor out rule | mh | |
2016-06-29 | * fix rule section | Lebedev Vadim | |
2016-06-26 | older puppet versions can't yet dealt with that | mh | |
2016-06-26 | modernize so we don't need to deploy a full config file anymore | mh | |
2016-06-25 | make this a boolean | mh | |
2016-06-25 | this is only needed on EL6 | mh | |
2016-05-28 | the section requires a ? since EL6 | mh | |
2016-04-29 | Merge branch 'master' of https://github.com/duritong/puppet-shorewall | Lebedev Vadim | |
Conflicts: manifests/debian.pp manifests/managed_file.pp | |||
2016-04-29 | * fix permission | Lebedev Vadim | |
2015-12-05 | linting for future parser | mh | |
2015-12-05 | check shorewall daily on problems to alert if a rule won't compile | mh | |
2015-12-05 | linting | mh | |
2015-12-05 | make service restart more failsafe | mh | |
2015-12-05 | add razor rules | mh | |
2015-12-05 | make it possible to create resources from hiera | mh | |
2015-12-05 | Deprecated | Sylvain VeyriƩ | |
2015-12-05 | Non string mode is now deprecated | Sylvain VeyriƩ | |
2015-12-05 | fix the missing include | mh | |
2015-12-05 | get rid off lsb facts | mh | |
2015-12-05 | indentation | mh | |
2015-12-05 | there might be people who don't have a stun server | mh | |
2015-12-05 | linting | mh | |
2015-12-05 | a cleaner naming | mh | |
2015-12-05 | add rule for stun | o | |
2015-12-05 | add rule for openvpn | o | |
2015-12-05 | manage new and legacy ports of managesieve | mh | |
2015-12-05 | add rules for pyzor | mh | |
2015-12-05 | make it easier to override behaviour of the dns rules | mh | |
2015-12-05 | fix define | mh | |
2015-12-05 | migrate ipsec rules to a define so we can specify multiple zones | mh | |
2015-12-05 | only manage the config_path if we do not manage the config file | mh | |
2015-12-05 | use the centos class on centos based systems | mh | |
2015-12-05 | with the latest updates on EL6 this is needed | mh | |
2015-11-28 | Merge branch 'master' into 'master' | ng | |
Remove 'require augeas' (#4396) Because the puppet 'require' keyword actually instantiates a class, having 'require augeas' in base.pp means that you cannot instantiate the augeas class anywhere else in your manifests, for example with some optional parameters to the class. If you do, you will get a duplicate definition error. The README already says that the augeas module is required. It seems better that this is managed outside of the module, allowing for class parameter flexibility. See merge request !3 | |||
2015-07-16 | shorewall::rules::libvirt::host: adjust to changes in shorewall::mangle. | intrigeri | |
That is, make the resource's title more unique by including the destination interface in it, and accordingly pass the desired action via the new, dedicated parameter. | |||
2015-07-16 | shorewall::mangle: allow specifying the ACTION explicitly. | intrigeri | |
Previously, it was using $name, which prevented adding multiple mangle rules that share a common ACTION, with different parameters. | |||
2015-05-19 | provide a class ordering hint for augeas setup | Micah Anderson | |
2015-05-19 | Remove 'require augeas' (#4396) | Micah Anderson | |
Because the puppet 'require' keyword actually instantiates a class, having 'require augeas' in base.pp means that you cannot instantiate the augeas class anywhere else in your manifests, for example with some optional parameters to the class. If you do, you will get a duplicate definition error. The README already says that the augeas module is required. It seems better that this is managed outside of the module, allowing for class parameter flexibility. | |||
2015-05-08 | Make sure MUNINCOLLECTOR join() gets an array in munin rule | Jerome Charaoui | |
2015-04-17 | Change tunnel managed file | Nick | |
2015-04-17 | Fix tunnels filename | Nick | |
2015-03-02 | Merge branch 'bugfix/Fix_DHCP_for_libvirt' into 'master' | Jerome Charaoui | |
Fix dhcp for libvirt This branch uses the mangle table support added by the feature/Add_support_for_mangle_table branch to fix the libvirt DHCP when broken by recent kernel. It fills the checksum of this kind of packets on the libvirt interface. This patch shouldn't break older setup, and is implemented so that it can be disabled. See merge request !2 | |||
2015-02-27 | Fix DHCP from $vmz. | bertagaz | |
On newer kernel (tested on 3.16), the libvirt and shorewall iptables rules have conflicts that need to be fixed by enabling back --checksum-fill on $vmz, otherwise the VMs can't get a DHCP lease. | |||
2015-02-27 | Add support for the mangle table. | bertagaz | |