From 2d355a4c1baadc761d6b12645d0274da8866f722 Mon Sep 17 00:00:00 2001 From: Tim Meusel Date: Mon, 18 Sep 2017 15:23:36 +0200 Subject: initial commit --- docs/puppet_classes/ferm.html | 297 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 297 insertions(+) create mode 100644 docs/puppet_classes/ferm.html (limited to 'docs/puppet_classes/ferm.html') diff --git a/docs/puppet_classes/ferm.html b/docs/puppet_classes/ferm.html new file mode 100644 index 0000000..74c4b67 --- /dev/null +++ b/docs/puppet_classes/ferm.html @@ -0,0 +1,297 @@ + + + + + + + Puppet Class: ferm + + — Documentation by YARD 0.9.12 + + + + + + + + + + + + + + + + + +
+ +
+
+ +
+ + +

Puppet Class: ferm

+
+ + +
+
Defined in:
+
+ manifests/init.pp +
+
+
+ +

Overview

+
+
+

Class: ferm

+ +

This class manages ferm installation and rule generation on modern linux systems

+ +

class{'ferm': + manage_service => true, +}

+ +
+
+
+ +
+

Examples:

+ + +

deploy ferm and start it

+

+ +
+ +
+

Parameters:

+
    + +
  • + + manage_service + + + (Boolean) + + + + — +

    disable/enable the management of the ferm daemon +Default value: false +Allowed values: (true|false)

    +
    + +
    • + +
  • + + manage_configfile + + + (Boolean) + + + + — +

    disable/enable the management of the ferm default config +Default value: false +Allowed values: (true|false)

    +
    + +
    • + +
  • + + configfile + + + (Stdlib::Absolutepath) + + + + — +

    path to the config file +Default value: /etc/ferm.conf +Allowed values: Stdlib::Absolutepath

    +
    + +
    • + +
  • + + forward_policy + + + (Ferm::Policies) + + + + — +

    default policy for the FORWARD chain +Default value: DROP +Allowed values: (ACCEPT|DROP|REJECT)

    +
    + +
    • + +
  • + + output_policy + + + (Ferm::Policies) + + + + — +

    default policy for the OUTPUT chain +Default value: ACCEPT +Allowed values: (ACCEPT|DROP|REJECT)

    +
    + +
    • + +
  • + + input_policy + + + (Ferm::Policies) + + + + — +

    default policy for the INPUT chain +Default value: DROP +Allowed values: (ACCEPT|DROP|REJECT)

    +
    + +
    • + +
  • + + rules + + + (Hash) + + + + — +

    a hash that holds all data for ferm::rule +Default value: Empty Hash +Allowed value: Any Hash

    +
    + +
    • + +
+ + +
+ + + + + +
+ 
+
+
+31
+32
+33
+34
+35
+36
+37
+38
+39
+40
+41
+42
+43
+44
+45
+46
+47
+48
+49
+50
+51
+52
+53
+54
+55
+ 		+ 
# File 'manifests/init.pp', line 31
+
+class ferm (
+  Boolean $manage_service,
+  Boolean $manage_configfile,
+  Stdlib::Absolutepath $configfile,
+  Ferm::Policies $forward_policy,
+  Ferm::Policies $output_policy,
+  Ferm::Policies $input_policy,
+  Hash $rules,
+) {
+  contain ferm::install
+  contain ferm::config
+  contain ferm::service
+
+  Class['ferm::install']
+  -> Class['ferm::config']
+  ~> Class['ferm::service']
+
+  $rules.each |$rulename, $attributes| {
+    ferm::rule{$rulename:
+      * => $attributes,
+    }
+  }
+  # import all exported resources with ferm rules for this node
+  Ferm::Rule <<| tag == $trusted['certname'] |>>
+}
+
+
+
+ + + +
+ + \ No newline at end of file -- cgit v1.2.3