jump => "ACCEPT",
proto => "tcp",
}
+
firewall { '001 allow boo':
jump => "ACCEPT",
iniface => "eth0",
destination => "1.1.1.0/24",
source => "2.2.2.0/24",
}
+
firewall { '999 bar':
dport => "1233",
proto => "tcp",
jump => "DROP",
}
+
firewall { '002 foo':
dport => "1233",
proto => "tcp",
jump => "DROP",
}
+
firewall { "010 icmp":
proto => "icmp",
-# icmp => "any",
+ icmp => "echo-reply",
jump => "ACCEPT",
}
-#firewall { "050 horrowshow":
-#
-#}
-
resources { 'firewall':
purge => true
require 'puppet/util/firewall'
Puppet::Type.newtype(:firewall) do
+ include Puppet::Util::Firewall
+
@doc = "Manipulate firewall rules"
ensurable do
Code Review / puppet-modules / puppetlabs-firewall.git / commitdiff