Skip to content

janorn/puppet-ipfilter

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
files
files
 
 
manifests
manifests
 
 
spec
spec
 
 
templates/concat
templates/concat
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
CHANGELOG
CHANGELOG
 
 
LICENSE
LICENSE
 
 
README.rdoc
README.rdoc
 
 
Rakefile
Rakefile
 
 
metadata.json
metadata.json
 
 

Repository files navigation

Puppet module: ipfilter

This is a puppet module to manage ipfilter in solaris primarily.

License

Released under the terms of Apache 2 License.

Support

Please log tickets and issues at our [Projects site](github.com/janorn/puppet-ipfilter/issues)

Usage

This config:

class { 'ipfilter': 
  block_policy => 'reject',
}
	
ipfilter::rule { 'http': 
  port       => '80',
  protocol   => 'tcp',
}

Will generate this ipf.conf file:

## File Managed by Puppet
# Default block rule with reject. 
block return-icmp-as-dest(3) in log all
block out log all

# Accept all ICMP pkgs
pass in quick proto icmp from any to <thishost>
pass out quick proto icmp from <thishost> to any

# Allow ssh on port 22
pass in quick proto tcp from any to <thishost> port = 22 keep state

# Rule http
pass in quick proto tcp from any to <thishost> port = 80 keep state

# Allow connections originating from local machine out
pass out quick proto tcp all flags S/SA keep state
pass out quick proto udp all keep state

About

Puppet module to manage ipfilter

Resources

Readme

License

View license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases 1

Modernise this module and remove some unwanted dependencies Latest
Apr 30, 2017

Packages

No packages published

Languages