fix kernel incompatibilities

Certain kernel modules and thus iptables functionality was introduced at later releases, so we need to properly reflect that in our default chain initialization procedure. `INPUT` chain for `nat` table was introduced with 2.6.36 `ip6table_nat` kernel module for NAT functionality with IPv6 was introduced with 3.17 This commit implements the required conditional constraints and includes the rspec tests to validate it.
author: Thore Bödecker <me@foxxx0.de> 2019-09-13 12:15:19 +0200
committer: Thore Bödecker <me@foxxx0.de> 2019-09-13 12:48:40 +0200
commit: 3117ba0822e5472b9aa2a3e6e6ef4c43ea4c6565 (patch)
tree: 1e8f31e85edaa9c7aeec9fae4718e9130d156be3 /REFERENCE.md
parent: 1d02a062e30ffdc94a739a7280a4b124c329620d (diff)
download: puppet-ferm-3117ba0822e5472b9aa2a3e6e6ef4c43ea4c6565.tar.gz
puppet-ferm-3117ba0822e5472b9aa2a3e6e6ef4c43ea4c6565.tar.bz2
1 files changed, 9 insertions, 0 deletions
diff --git a/REFERENCE.md b/REFERENCE.md
index 3225969..5ab5f0b 100644
--- a/REFERENCE.md
+++ b/REFERENCE.md
@@ -263,6 +263,15 @@ Allowed values: (filter|raw|mangle|nat) (see Ferm::Tables type)
 
 Default value: 'filter'
 
+##### `ip_versions`
+
+Data type: `Array[Enum['ip','ip6']]`
+
+Set list of versions of ip we want ot use.
+Default value: $ferm::ip_versions
+
+Default value: $ferm::ip_versions
+
 ### ferm::rule
 
 This defined resource manages a single rule in a specific chain
author	Thore Bödecker <me@foxxx0.de>	2019-09-13 12:15:19 +0200
committer	Thore Bödecker <me@foxxx0.de>	2019-09-13 12:48:40 +0200
commit	3117ba0822e5472b9aa2a3e6e6ef4c43ea4c6565 (patch)
tree	1e8f31e85edaa9c7aeec9fae4718e9130d156be3 /REFERENCE.md
parent	1d02a062e30ffdc94a739a7280a4b124c329620d (diff)
download	puppet-ferm-3117ba0822e5472b9aa2a3e6e6ef4c43ea4c6565.tar.gz puppet-ferm-3117ba0822e5472b9aa2a3e6e6ef4c43ea4c6565.tar.bz2