| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2020-05-18 | add install_method parameter | Fabien COMBERNOUS | |
| 2020-04-21 | make dropping of pakets marked as invalid optional | Tim Meusel | |
| 2020-04-21 | use dedicated conntrack parameters | Fabien COMBERNOUS | |
| 2020-04-09 | cleanup puppet-strings documentation | Tim Meusel | |
| 2019-10-01 | update docker firewalling example | Tim Meusel | |
| 2019-09-18 | move common from hiera data values to init.pp | Fabien COMBERNOUS | |
| 2019-09-11 | expose parameter to initialize custom chains | Thore Bödecker | |
| Previously it was not possible to define custom chains with parameter, e.g. in order to collect them from hiera. This commit adds this functionality, just like it was already in place for ferm::rules. | |||
| 2019-09-11 | add ability to define rules in tables != filter | Thore Bödecker | |
| Previously it was neither possible to properly define custom chains nor to define rules in tables other than the default filter table. For various legitimate reasons it can be required to define rules in the raw, nat or mangle tables, e.g. to use NOTRACK or to configure DNAT/SNAT/MASQUERADE. Additionally it might come in handy to define custom chains to group certain rules and allow a more efficient evaluation for incoming packets by not cramming all rules into the filter/INPUT chain so that (worst-case) all packets need to traverse and evaluate all rules. I have tried to maintain backwards compatibility and to not change default filenames/paths so that it won't result in leftover obsolete unmaged files from previous versions of this module. In order to improve the naming schema the rule $policy has been renamed to $action, however both parameters are available and optional now, with some sanity checks that require at most one of them and issueing a warning() for users of the now deprecated $policy parameter. All previous tests have been adapted to the changes, a long with an additional set of tests for the new feature. Fixes #61 | |||
| 2019-09-02 | allow preserving of chains in tables | Thore Bödecker | |
| 2019-09-01 | Add Debian 10 support & make configdirectory configureable | Tim Meusel | |
| 2019-04-05 | add parameter manage_initfile with default false | Kilian Engelhardt | |
| 2019-01-24 | permit to choose ipv4, ipv6 or both | Fabien COMBERNOUS | |
| 2018-12-19 | Simplify puppet-strings documentation | Tim Meusel | |
| 2018-12-19 | Implement logging to kernel log | Tim Meusel | |
| 2018-03-17 | introduce parameter disable_conntrack | Kilian Engelhardt | |
| Default value of disable_conntrack is 'false'. Existing installations are not affected by this change. | |||
| 2018-03-15 | initial commit | Tim Meusel | |
 |
index : puppet-ferm | |
| Puppet module for ferm | Fluxo |
| aboutsummaryrefslogtreecommitdiff |