:week_days => "--weekdays",
:time_contiguous => "--contiguous",
:kernel_timezone => "--kerneltz",
+ :src_cc => "--src-cc",
+ :dst_cc => "--dst-cc",
}
# These are known booleans that do not take a value, but we want to munge
:addrtype => [:src_type, :dst_type],
:iprange => [:src_range, :dst_range],
:owner => [:uid, :gid],
- :time => [:time_start, :time_stop, :month_days, :week_days, :date_start, :date_stop, :time_contiguous, :kernel_timezone]
+ :time => [:time_start, :time_stop, :month_days, :week_days, :date_start, :date_stop, :time_contiguous, :kernel_timezone],
+ :geoip => [:src_cc, :dst_cc]
}
# Create property methods dynamically
:rhitcount, :rttl, :rname, :mask, :rsource, :rdest, :ipset, :string, :string_algo,
:string_from, :string_to, :jump, :clamp_mss_to_pmtu, :gateway, :todest,
:tosource, :toports, :checksum_fill, :log_level, :log_prefix, :log_uid, :reject, :set_mss, :set_dscp, :set_dscp_class, :mss, :queue_num, :queue_bypass,
- :set_mark, :match_mark, :connlimit_above, :connlimit_mask, :connmark, :time_start, :time_stop, :month_days, :week_days, :date_start, :date_stop, :time_contiguous, :kernel_timezone]
+ :set_mark, :match_mark, :connlimit_above, :connlimit_mask, :connmark, :time_start, :time_stop, :month_days, :week_days, :date_start, :date_stop, :time_contiguous, :kernel_timezone,
+ :src_cc, :dst_cc]
end
:clusterip_total_nodes => "--total-nodes",
:clusterip_local_node => "--local-node",
:clusterip_hash_init => "--hash-init",
+ :src_cc => "--src-cc",
+ :dst_cc => "--dst-cc",
}
# These are known booleans that do not take a value, but we want to munge
:addrtype => [:src_type, :dst_type],
:iprange => [:src_range, :dst_range],
:owner => [:uid, :gid],
- :time => [:time_start, :time_stop, :month_days, :week_days, :date_start, :date_stop, :time_contiguous, :kernel_timezone]
+ :time => [:time_start, :time_stop, :month_days, :week_days, :date_start, :date_stop, :time_contiguous, :kernel_timezone],
+ :geoip => [:src_cc, :dst_cc]
}
def self.munge_resource_map_from_existing_values(resource_map_original, compare)
:clusterip_clustermac, :clusterip_total_nodes, :clusterip_local_node, :clusterip_hash_init, :queue_num, :queue_bypass,
:clamp_mss_to_pmtu, :gateway, :set_mss, :set_dscp, :set_dscp_class, :todest, :tosource, :toports, :to, :checksum_fill, :random, :log_prefix,
:log_level, :log_uid, :reject, :set_mark, :match_mark, :mss, :connlimit_above, :connlimit_mask, :connmark, :time_start, :time_stop,
- :month_days, :week_days, :date_start, :date_stop, :time_contiguous, :kernel_timezone
+ :month_days, :week_days, :date_start, :date_stop, :time_contiguous, :kernel_timezone,
+ :src_cc, :dst_cc
]
def insert
newvalues(:true, :false)
end
+ newproperty(:src_cc) do
+ desc <<-EOS
+ src attribute for the module geoip
+ EOS
+ newvalues(/^[A-Z]{2}(,[A-Z]{2})*$/)
+ end
+
+ newproperty(:dst_cc) do
+ desc <<-EOS
+ dst attribute for the module geoip
+ EOS
+ newvalues(/^[A-Z]{2}(,[A-Z]{2})*$/)
+ end
autorequire(:firewallchain) do
reqs = []
Code Review / puppet-modules / puppetlabs-firewall.git / commitdiff