Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-12-31 | Updates debian default configdevelop | Silvio Rhatto | |
2016-03-23 | Merge remote-tracking branch 'shared/master' into developHEADmaster | Silvio Rhatto | |
Conflicts: manifests/tunnel.pp | |||
2015-12-09 | Merge branch 'immerda_changes' into 'master' shared | Micah | |
Immerda changes See merge request !5 | |||
2015-12-05 | linting for future parser | mh | |
2015-12-05 | check shorewall daily on problems to alert if a rule won't compile | mh | |
2015-12-05 | linting | mh | |
2015-12-05 | make service restart more failsafe | mh | |
2015-12-05 | add razor rules | mh | |
2015-12-05 | make it possible to create resources from hiera | mh | |
2015-12-05 | update a few headers | mh | |
2015-12-05 | Deprecated | Sylvain Veyrié | |
2015-12-05 | Non string mode is now deprecated | Sylvain Veyrié | |
2015-12-05 | fix the missing include | mh | |
2015-12-05 | get rid off lsb facts | mh | |
2015-12-05 | indentation | mh | |
2015-12-05 | there might be people who don't have a stun server | mh | |
2015-12-05 | linting | mh | |
2015-12-05 | a cleaner naming | mh | |
2015-12-05 | add rule for stun | o | |
2015-12-05 | add rule for openvpn | o | |
2015-12-05 | manage new and legacy ports of managesieve | mh | |
2015-12-05 | add rules for pyzor | mh | |
2015-12-05 | make it easier to override behaviour of the dns rules | mh | |
2015-12-05 | The augeas module is not needed, but the concat module is | Sylvain Veyrié | |
2015-12-05 | fix define | mh | |
2015-12-05 | migrate ipsec rules to a define so we can specify multiple zones | mh | |
2015-12-05 | only manage the config_path if we do not manage the config file | mh | |
2015-12-05 | use the centos class on centos based systems | mh | |
2015-12-05 | with the latest updates on EL6 this is needed | mh | |
2015-11-28 | Merge branch 'master' into 'master' | ng | |
Remove 'require augeas' (#4396) Because the puppet 'require' keyword actually instantiates a class, having 'require augeas' in base.pp means that you cannot instantiate the augeas class anywhere else in your manifests, for example with some optional parameters to the class. If you do, you will get a duplicate definition error. The README already says that the augeas module is required. It seems better that this is managed outside of the module, allowing for class parameter flexibility. See merge request !3 | |||
2015-10-09 | Merge branch 'feature/mangle-support-multiple-rules-with-same-action' into ↵ | Micah | |
'master' Feature/mangle support multiple rules with same action This allows one to support multiple networks in libvirt. See merge request !4 | |||
2015-07-16 | shorewall::rules::libvirt::host: adjust to changes in shorewall::mangle. | intrigeri | |
That is, make the resource's title more unique by including the destination interface in it, and accordingly pass the desired action via the new, dedicated parameter. | |||
2015-07-16 | shorewall::mangle: allow specifying the ACTION explicitly. | intrigeri | |
Previously, it was using $name, which prevented adding multiple mangle rules that share a common ACTION, with different parameters. | |||
2015-07-08 | fixed code indentation, added gitlab shared remote | varac | |
2015-07-08 | moved README to README.md so it hopefully renders as markdown in gitlab now | varac | |
2015-05-19 | provide a class ordering hint for augeas setup | Micah Anderson | |
2015-05-19 | Remove 'require augeas' (#4396) | Micah Anderson | |
Because the puppet 'require' keyword actually instantiates a class, having 'require augeas' in base.pp means that you cannot instantiate the augeas class anywhere else in your manifests, for example with some optional parameters to the class. If you do, you will get a duplicate definition error. The README already says that the augeas module is required. It seems better that this is managed outside of the module, allowing for class parameter flexibility. | |||
2015-05-08 | Make sure MUNINCOLLECTOR join() gets an array in munin rule | Jerome Charaoui | |
2015-04-17 | Add GPLv3 license | Micah Anderson | |
2015-03-02 | Merge branch 'bugfix/Fix_DHCP_for_libvirt' into 'master' | Jerome Charaoui | |
Fix dhcp for libvirt This branch uses the mangle table support added by the feature/Add_support_for_mangle_table branch to fix the libvirt DHCP when broken by recent kernel. It fills the checksum of this kind of packets on the libvirt interface. This patch shouldn't break older setup, and is implemented so that it can be disabled. See merge request !2 | |||
2015-03-02 | Merge branch 'feature/Add_support_for_mangle_table' into 'master' | Jerome Charaoui | |
Add support for mangle table. When using the kernel from Debian Wheezy-backports (3.16.0-0.bpo.4-amd64), we encoutered a bug where shorewall was breaking the libvirt DHCP if restarted after it. It seems that one has to add a rule in the POSTROUTING chain of the mangle table to --checksum-fill the DHCP packets for them to be properly catch by the VMs DHCP clients. So we had to add support of the mangle table to the shared puppet module to fix that. This patch does just that, and is meant to be used by the other branch I'll propose after. See merge request !1 | |||
2015-02-27 | Fix DHCP from $vmz. | bertagaz | |
On newer kernel (tested on 3.16), the libvirt and shorewall iptables rules have conflicts that need to be fixed by enabling back --checksum-fill on $vmz, otherwise the VMs can't get a DHCP lease. | |||
2015-02-27 | Add support for the mangle table. | bertagaz | |
2013-06-14 | Merge remote-tracking branch 'intrigeri/feature/libvirt-host' | Micah Anderson | |
2013-03-30 | Fix shorewall::rules::rsync source/destination | Silvio Rhatto | |
2013-03-23 | linting | mh | |
2013-03-23 | only manage the config_path if we do not manage the config file | mh | |
2013-03-23 | linting the init.pp | mh | |
2013-03-23 | use the centos class on centos based systems | mh | |
2013-03-23 | with the latest updates on EL6 this is needed | mh | |