aboutsummaryrefslogtreecommitdiff
path: root/REFERENCE.md
diff options
context:
space:
mode:
authorFabien COMBERNOUS <fabien.combernous@adullact.org>2019-11-01 14:12:30 +0100
committerTim Meusel <tim@bastelfreak.de>2020-04-21 11:54:58 +0200
commit91fa3bcde36896eedade89911df93bbf58b6609b (patch)
tree1bfa33e2712c03e0dc201ec104e28974b8e79614 /REFERENCE.md
parent9b71e958f45f50071203eaa7d6aac445ee31ff14 (diff)
downloadpuppet-ferm-91fa3bcde36896eedade89911df93bbf58b6609b.tar.gz
puppet-ferm-91fa3bcde36896eedade89911df93bbf58b6609b.tar.bz2
use dedicated conntrack parameters
Diffstat (limited to 'REFERENCE.md')
-rw-r--r--REFERENCE.md24
1 files changed, 21 insertions, 3 deletions
diff --git a/REFERENCE.md b/REFERENCE.md
index 2de98f6..4a3283a 100644
--- a/REFERENCE.md
+++ b/REFERENCE.md
@@ -112,11 +112,27 @@ Data type: `Stdlib::Absolutepath`
Path to the directory where the module stores ferm configuration files
-##### `disable_conntrack`
+##### `forward_disable_conntrack`
+
+Data type: `Boolean`
+
+Enable/Disable the generation of conntrack rules for the FORWARD chain
+
+Default value: `true`
+
+##### `output_disable_conntrack`
Data type: `Boolean`
-Disable/Enable the generation of conntrack rules
+Enable/Disable the generation of conntrack rules for the OUTPUT chain
+
+Default value: `true`
+
+##### `input_disable_conntrack`
+
+Data type: `Boolean`
+
+Enable/Disable the generation of conntrack rules for the INPUT chain
Default value: `false`
@@ -227,7 +243,9 @@ The following parameters are available in the `ferm::chain` defined type.
Data type: `Boolean`
-Disable/Enable usage of conntrack
+Disable/Enable usage of conntrack. By default, we enable conntrack only for the filter INPUT chain
+
+Default value: `true`
##### `log_dropped_packets`
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-15 07:57:03 +0000