tmakinen/puppet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

puppet 3.0 fixes

Browse source
This commit is contained in:
Paavo Pokkinen 2012-10-10 15:13:50 +03:00
parent 26ebca9a5f
commit eebd1512cf
5 changed files with 25 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

4
firewall/templates/ip6tables.erb
View file

@ -14,7 +14,7 @@
<% end -%>
-A INPUT -p ipv6-icmp -j ACCEPT
<%
firewall_rules.each do |rule|
@firewall_rules.each do |rule|
rule = /(tcp|udp)\/([\d:]+)( .+)?/.match(rule)
if not rule[3] or IPAddr.new(rule[3].strip()).ipv6?
-%>
@ -22,7 +22,7 @@
<%
end
end
firewall_custom.each do |rule|
@firewall_custom.each do |rule|
-%>
<%= rule %>
<% end -%>

4
firewall/templates/iptables.erb
View file

@ -8,7 +8,7 @@
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p icmp --icmp-type any -j ACCEPT
<%
firewall_rules.each do |rule|
@firewall_rules.each do |rule|
rule = /(tcp|udp)\/([\d:]+)( .+)?/.match(rule)
if not rule[3] or IPAddr.new(rule[3].strip()).ipv4?
-%>
@ -16,7 +16,7 @@
<%
end
end
firewall_custom.each do |rule|
@firewall_custom.each do |rule|
-%>
<%= rule %>
<% end -%>

4
firewall/templates/pf.conf.erb
View file

@ -8,10 +8,10 @@ pass out all
pass in quick inet proto icmp all
pass in quick inet6 proto icmp6 all
<% firewall_rules.each do |rule| -%>
<% @firewall_rules.each do |rule| -%>
<% rule = /(tcp|udp)\/([\d:]+)( .+)?/.match(rule) -%>
pass in quick proto <%= rule[1] %><% if rule[3] %> from<%= rule[3] %><% end %> to port <%= rule[2] %>
<% end -%>
<% firewall_custom.each do |rule| -%>
<% @firewall_custom.each do |rule| -%>
<%= rule %>
<% end -%>