diff options
Diffstat (limited to 'REFERENCE.md')
| -rw-r--r-- | REFERENCE.md | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/REFERENCE.md b/REFERENCE.md index 62a5d3b..3225969 100644 --- a/REFERENCE.md +++ b/REFERENCE.md @@ -292,6 +292,28 @@ ferm::rule{'allow-ssh-localhost': } ``` +##### Confuse people that do a traceroute/mtr/ping to your system + +```puppet +ferm::rule{'drop-icmp-time-exceeded': + chain => 'OUTPUT', + policy => 'DROP', + proto => 'icmp', + proto_options => 'icmp-type time-exceeded', +} +``` + +##### allow multiple protocols + +```puppet +ferm::rule{'allow_consul': + chain => 'INPUT', + policy => 'ACCEPT', + proto => ['udp', 'tcp'], + dport => 8301, +} +``` + #### Parameters The following parameters are available in the `ferm::rule` defined type. |