diff options
| author | Silvio Rhatto <rhatto@riseup.net> | 2014-09-26 17:52:17 -0300 |
|---|---|---|
| committer | Silvio Rhatto <rhatto@riseup.net> | 2014-09-26 17:52:17 -0300 |
| commit | 2c0b265d9f83af0ce00e47cb799137477efb0006 (patch) | |
| tree | 9d370a99a00302ba52971ce4a027a36f18e4434c | |
| parent | 637ba6a7d487bd441bbd0621a3f58a7ec1201ae3 (diff) | |
| download | puppet-firewall-2c0b265d9f83af0ce00e47cb799137477efb0006.tar.gz puppet-firewall-2c0b265d9f83af0ce00e47cb799137477efb0006.tar.bz2 | |
Adding firewall::pppoe
| -rw-r--r-- | manifests/pppoe.pp | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/manifests/pppoe.pp b/manifests/pppoe.pp new file mode 100644 index 0000000..a771d48 --- /dev/null +++ b/manifests/pppoe.pp @@ -0,0 +1,26 @@ +class firewall::pppoe( + $packages = false, + $local_dev = false, +) { + # Manage pppoe packages, requires nodo module + if $packages == true { + include nodo::utils::network::pppoe + } + + # Define device in the local zone + if $local_dev == true{ + shorewall::interface { "eth0": + zone => 'loc', + rfc1918 => false, + options => 'tcpflags,blacklist,routefilter,nosmurfs,logmartians', + } + } + + # See http://shorewall.net/two-interface.htm + augeas { 'clampmss': + changes => 'set /files/etc/shorewall/shorewall.conf/CLAMPMSS Yes', + lens => 'Shellvars.lns', + incl => '/etc/shorewall/shorewall.conf', + notify => Service[shorewall]; + } +} |