summaryrefslogtreecommitdiff
path: root/manifests
AgeCommit message (Collapse)Author
2017-04-07add mgmt of files for shorewall6mh
2017-04-07make zones also for ipv6mh
2017-04-07make dependencies a bit more clearmh
2017-04-07fix pathmh
2017-04-07correct namingmh
2017-04-07first step towards shorewall6, basic service is runningmh
2017-04-07calculate whether we want to disable ipv6 (if there is no public ipv6 ↵mh
address) or not
2017-02-24Merge branch 'avoid-duplicate-package-definition' into 'master' Micah
Use ensure_packages, to avoid duplicate definition in case Package['shorewall'] is defined elsewhere already. See merge request !10
2017-02-20update URLs to new working upstream locationsMatt Taggart
2017-02-20new stoppedrules, replaces routestoppedMatt Taggart
2017-02-19no need for openvpn outgoingmh
2017-02-14Use ensure_packages, to avoid duplicate definition in case ↵intrigeri
Package['shorewall'] is defined elsewhere already.
2017-02-10remove deprecated rfc1918 fileMatt Taggart
this hasn't been supported since 3.x days
2017-02-10remove deprecated norfc1918 optionMatt Taggart
It was deprecated in 4.2.0 http://www.shorewall.net/upgrade_issues.htm
2017-02-10remove deprecated blacklistMatt Taggart
the blacklist file was deprecated by upstream in 4.5.7, remove all references to them. Debian wheezy shipped with 4.5.5.3-3 (but could use a backport) and jessie has 4.6.4.3-2 currently.
2017-02-10Merge remote-tracking branch 'origin/master' into riseupMicah Anderson
2017-02-09correct decisionmh
2017-02-09cherry pick fixes for 5.xmh
Conflicts: manifests/rule_section.pp
2017-02-09* Fix typoLebedev Vadim
2017-02-09* Add exampleLebedev Vadim
2017-02-09* Add shorewall-blrules supportLebedev Vadim
2017-02-09* fix rule sectionLebedev Vadim
2017-01-14Merge pull request #13 from marknl/masterduritong
Conntrack support
2017-01-13Merge remote-tracking branch 'github/master'mh
2017-01-13correct decisionmh
2017-01-13also support the older versionsmh
2017-01-12Merge branch 'master' into masterduritong
2017-01-12Merge pull request #15 from marknl/patch-2duritong
Added $host option
2017-01-12Use $name for backwards compatibilityMarknl
2017-01-12connect docu with classmh
2017-01-12Merge remote-tracking branch 'github/master'mh
2017-01-11Brought $name back into the game for backw. compatMarknl
2017-01-10Added $host optionMarknl
Current rule.pp converts the $name into the "HOST" parameter in the file, this can result in these definitions: ```shorewall::host { 'eth0:$VPN_HOSTS': zone => 'vpn', options => 'ipsec', order => 200; }``` I suggest moving the variable usage from the $name into a $host parameter, so above example becomes: ```shorewall::host { 'vpn-hosts': zone => 'vpn', host => 'eth0:$VPN_HOSTS', options => 'ipsec', order => 200; }```
2016-12-27Conntrack helperMarknl
2016-12-27Added conntrack to managed filesMarknl
2016-09-23add tor out rulemh
2016-06-29* fix rule sectionLebedev Vadim
2016-06-26older puppet versions can't yet dealt with thatmh
2016-06-26modernize so we don't need to deploy a full config file anymoremh
2016-06-25make this a booleanmh
2016-06-25this is only needed on EL6mh
2016-06-11[bug] Augeas is still neededvarac
Without including `augeas` puppet would complain: Error: Could not find resource 'Class[Augeas]' for relationship on 'Class[Shorewall::Base]' on node default
2016-05-28the section requires a ? since EL6mh
2016-04-29Merge branch 'master' of https://github.com/duritong/puppet-shorewallLebedev Vadim
Conflicts: manifests/debian.pp manifests/managed_file.pp
2016-04-29* fix permissionLebedev Vadim
2015-12-05linting for future parsermh
2015-12-05check shorewall daily on problems to alert if a rule won't compilemh
2015-12-05lintingmh
2015-12-05make service restart more failsafemh
2015-12-05add razor rulesmh
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-10 05:50:26 +0000