| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2012-12-11 | Because the puppet shorewall module uses concat::fragment assembly to put the | Micah Anderson | |
| final results in /etc/shorewall/puppet, we have to make sure the shorewall.conf is pointing to that directory to get those configurations. This commit fixes that. | |||
| 2012-12-04 | actually it is not possible to provide the site-shorewall sources for | Micah Anderson | |
| shorewall.conf, because if they do not exist, you will get a puppet error. this commit removes them, and updates the README to provide instructions for how you can do it the old way, if you want | |||
| 2012-12-04 | Stop shipping the default shorewall.conf file, instead we should let the | Micah Anderson | |
| operatingsystem package install its default config (this lets us stop having to keep this file updated), and instead tell people to configure their shorewall.conf file using the augeas method. It is possible still to distribute a shorewall.conf from a site-shorewall directory, however if the file is distributed, then it is not possible to use the augeas method. https://labs.riseup.net/code/issues/2738 | |||
| 2012-06-20 | changes in extension scripts should notify shorewall for a restart | Micah Anderson | |
| 2012-06-20 | update extension-script to use a simple file resource, instead of doing a ↵ | Micah Anderson | |
| managed file since it is never a fragement | |||
| 2012-06-20 | update additions to concat module that were not in immerda branch | Micah Anderson | |
| 2012-06-20 | fix for an incorrect merge | Micah Anderson | |
| 2012-06-20 | fix another merge issue | Micah Anderson | |
| 2012-06-20 | Revert "Support exempting some users from torification measures." | Micah Anderson | |
| This reverts commit 6cb88973f53aa7d92414797dd21952c1c1d5da98. | |||
| 2012-06-20 | Revert "fix for:" | Micah Anderson | |
| This reverts commit d3eb5ffc325bd13e103dc72143f78c050e149d29. | |||
| 2012-06-20 | fixup some merge gaffs | Micah Anderson | |
| 2012-06-20 | fix for: | Micah Anderson | |
| err: Could not retrieve catalog from remote server: Error 400 on SERVER: Syntax error at '['; expected ']' at /etc/puppet/modules/shorewall/manifests/init.pp:39 | |||
| 2012-06-20 | Merge remote-tracking branch 'immerda/master' into riseup | Micah Anderson | |
| NOTE: the conflicts in the files/shorewall.conf.Debian.squeeze I resolved by favoring the actual debian squeeze shorewall.conf, there were a few options in the immerda one that were not the same. Conflicts: README files/shorewall.conf.Debian.squeeze manifests/base.pp manifests/blacklist.pp manifests/debian.pp manifests/host.pp manifests/init.pp manifests/interface.pp manifests/masq.pp manifests/nat.pp manifests/params.pp manifests/policy.pp manifests/proxyarp.pp manifests/rfc1918.pp manifests/routestopped.pp manifests/rule.pp manifests/rule_section.pp manifests/rules/out/ekeyd.pp manifests/zone.pp | |||
| 2012-06-20 | Support exempting some users from torification measures. | intrigeri | |
| 2012-06-18 | the rest will be included already by the client | mh | |
| 2012-06-13 | migrate away from hiera stuff | mh | |
| 2012-06-08 | refactor things for >2.7 | mh | |
| 2012-06-06 | fix for new style for 2.7 | mh | |
| 2012-02-10 | get the order right | mh | |
| 2011-12-23 | do the link before the service | mh | |
| 2011-12-22 | workaround for bug in C6 version | mh | |
| 2011-12-22 | add CentOS 6 version | mh | |
| 2011-11-05 | allow ssh_in source to be selected by hiera, better naming for the same ↵ | mh | |
| option for munin | |||
| 2011-11-05 | configure munin things via hiera, allow interface to be chosen | mh | |
| 2011-08-04 | add missing targets | Marcel Haerry | |
| 2011-08-04 | refactor things to use the concat module | Marcel Haerry | |
| 2011-08-04 | differentiate between general jabberserver and openfire | Marcel Haerry | |
| 2011-08-04 | new class shorewall::rules::dns::disable | Andreas Zuber | |
| 2011-08-04 | add management for providers | Matthias Imsand | |
| 2011-08-04 | added rule for tomcat | Juerg Gerber | |
| 2011-08-04 | added filetransfer proxy port to jabberserver ruleset | Juerg Gerber | |
| 2011-08-04 | fix typo | Simon Josi | |
| 2011-08-04 | add output rule for xmpp | Simon Josi | |
| 2011-06-21 | allow esp traffic from and to me | mh | |
| 2011-06-21 | added ipsec rule | o | |
| 2011-06-21 | add outgoing smtp rule | mh | |
| 2011-06-21 | do it as a define so we can easily pass multiple target zones | mh | |
| 2011-06-21 | add ekeyd rules | mh | |
| 2011-04-26 | allow esp traffic from and to me | mh | |
| 2011-04-26 | added ipsec rule | o | |
| 2011-03-06 | add outgoing smtp rule | mh | |
| 2011-03-02 | do it as a define so we can easily pass multiple target zones | mh | |
| 2011-03-01 | add ekeyd rules | mh | |
| 2011-02-07 | add irc & irc-ssl outgoing rules | mh | |
| 2011-02-02 | fix missing shorewall:: prefix on the extension_script define | Micah Anderson | |
| 2010-12-17 | Add support for Tor-ified traffic. | intrigeri | |
| 2010-12-16 | Internal refactoring of shorewall::interface | intrigeri | |
| ... for more consistent options management. The public API does not change. | |||
| 2010-12-16 | Add shorewall::rules::mdns. | intrigeri | |
| 2010-12-16 | New add_options parameter to shorewall::interface. | intrigeri | |
| 2010-12-11 | Merge remote branch 'immerda/master' | intrigeri | |
 |
index : puppet-shorewall | |
| Puppet module for shorewall | Fluxo |
| aboutsummaryrefslogtreecommitdiff |