From d4b8909eab6194da389b121e46137da7618eb45c Mon Sep 17 00:00:00 2001 From: Tim Meusel Date: Mon, 30 Sep 2019 14:51:12 +0200 Subject: implement ipset support --- templates/ferm-chain-ipset.epp | 13 +++++++++++++ 1 file changed, 13 insertions(+) create mode 100644 templates/ferm-chain-ipset.epp (limited to 'templates/ferm-chain-ipset.epp') diff --git a/templates/ferm-chain-ipset.epp b/templates/ferm-chain-ipset.epp new file mode 100644 index 0000000..79aeb5c --- /dev/null +++ b/templates/ferm-chain-ipset.epp @@ -0,0 +1,13 @@ +<%- | String[1] $ip, +Ferm::Tables $table, +String[1] $chain, +Hash[String[1], Ferm::Actions] $sets, +| -%> + +domain (<%= $ip %>) table <%= $table %> { + chain <%= $chain %> { + <%- $sets.each |$ipset, $action| { -%> + mod set set <%= $ipset %> src <%= $action %>; + <%- } -%> + } +} -- cgit v1.2.3