aboutsummaryrefslogtreecommitdiff
path: root/manifests/rules
AgeCommit message (Collapse)Author
2012-06-20Revert "Support exempting some users from torification measures."Micah Anderson
This reverts commit 6cb88973f53aa7d92414797dd21952c1c1d5da98.
2012-06-20Merge remote-tracking branch 'immerda/master' into riseupMicah Anderson
NOTE: the conflicts in the files/shorewall.conf.Debian.squeeze I resolved by favoring the actual debian squeeze shorewall.conf, there were a few options in the immerda one that were not the same. Conflicts: README files/shorewall.conf.Debian.squeeze manifests/base.pp manifests/blacklist.pp manifests/debian.pp manifests/host.pp manifests/init.pp manifests/interface.pp manifests/masq.pp manifests/nat.pp manifests/params.pp manifests/policy.pp manifests/proxyarp.pp manifests/rfc1918.pp manifests/routestopped.pp manifests/rule.pp manifests/rule_section.pp manifests/rules/out/ekeyd.pp manifests/zone.pp
2012-06-20Support exempting some users from torification measures.intrigeri
2012-06-18the rest will be included already by the clientmh
2012-06-13migrate away from hiera stuffmh
2012-06-08refactor things for >2.7mh
2012-06-06fix for new style for 2.7mh
2011-11-05allow ssh_in source to be selected by hiera, better naming for the same ↵mh
option for munin
2011-11-05configure munin things via hiera, allow interface to be chosenmh
2011-08-04differentiate between general jabberserver and openfireMarcel Haerry
2011-08-04new class shorewall::rules::dns::disableAndreas Zuber
2011-08-04added rule for tomcatJuerg Gerber
2011-08-04added filetransfer proxy port to jabberserver rulesetJuerg Gerber
2011-08-04fix typoSimon Josi
2011-08-04add output rule for xmppSimon Josi
2011-06-21allow esp traffic from and to memh
2011-06-21added ipsec ruleo
2011-06-21add outgoing smtp rulemh
2011-06-21do it as a define so we can easily pass multiple target zonesmh
2011-06-21add ekeyd rulesmh
2011-04-26allow esp traffic from and to memh
2011-04-26added ipsec ruleo
2011-03-06add outgoing smtp rulemh
2011-03-02do it as a define so we can easily pass multiple target zonesmh
2011-03-01add ekeyd rulesmh
2011-02-07add irc & irc-ssl outgoing rulesmh
2010-12-17Add support for Tor-ified traffic.intrigeri
2010-12-16Add shorewall::rules::mdns.intrigeri
2010-11-04add silc rulesmh
2010-10-22error tcp instead of udpAndreas
2010-10-22add identd rulesmh
2010-10-21shorewall tinc rulesAndreas
2010-10-21introduce parametrized class for ports so we can pass the ports from the ↵mh
sshd module
2010-06-17enabling also hkps to keyserversmh
2010-06-17enabling also hkps on keyserversmh
2010-03-29add disable submission portmh
2010-03-29add smtp submission portmh
2010-01-09fix typomh
2010-01-09add smtp disable rulemh
2010-01-09fix typomh
2010-01-09absent rule for gitdaemonmh
2009-12-13add managesieve rulesmh
2009-12-07add pop3 rulesmh
2009-12-07add imap rulesmh
2009-12-07add ibackup rulemh
2009-12-07add postgres rulesmh
2009-12-07add mysql rulesmh
2009-12-07add keyserver rulesmh
2009-12-07use correct definemh
2009-12-07add puppet rulesmh