#
class firewall (
$ensure = running,
+ $pkg_ensure = present,
$service_name = $::firewall::params::service_name,
$package_name = $::firewall::params::package_name,
) inherits ::firewall::params {
'Linux': {
class { "${title}::linux":
ensure => $ensure,
+ pkg_ensure => $pkg_ensure,
service_name => $service_name,
package_name => $package_name,
}
#
class firewall::linux (
$ensure = running,
+ $pkg_ensure = present,
$service_name = $::firewall::params::service_name,
$package_name = $::firewall::params::package_name,
) inherits ::firewall::params {
}
package { 'iptables':
- ensure => present,
+ ensure => $pkg_ensure,
}
case $::operatingsystem {
# Default: true
#
class firewall::linux::archlinux (
- $ensure = 'running',
- $enable = true,
- $service_name = $::firewall::params::service_name,
- $package_name = $::firewall::params::package_name,
+ $ensure = 'running',
+ $enable = true,
+ $service_name = $::firewall::params::service_name,
+ $package_name = $::firewall::params::package_name,
+ $package_ensure = $::firewall::params::package_ensure,
) inherits ::firewall::params {
if $package_name {
package { $package_name:
- ensure => $ensure,
+ ensure => $package_ensure,
}
}
# Default: true
#
class firewall::linux::debian (
- $ensure = running,
- $enable = true,
- $service_name = $::firewall::params::service_name,
- $package_name = $::firewall::params::package_name,
+ $ensure = running,
+ $enable = true,
+ $service_name = $::firewall::params::service_name,
+ $package_name = $::firewall::params::package_name,
+ $package_ensure = $::firewall::params::package_ensure,
) inherits ::firewall::params {
if $package_name {
refreshonly => true
}
package { $package_name:
- ensure => present,
+ ensure => $package_ensure,
require => Exec['iptables-persistent-debconf']
}
}
# Default: true
#
class firewall::linux::gentoo (
- $ensure = 'running',
- $enable = true,
- $service_name = $::firewall::params::service_name,
- $package_name = $::firewall::params::package_name,
+ $ensure = 'running',
+ $enable = true,
+ $service_name = $::firewall::params::service_name,
+ $package_name = $::firewall::params::package_name,
+ $package_ensure = $::firewall::params::package_ensure,
) inherits ::firewall::params {
if $package_name {
package { $package_name:
- ensure => present,
+ ensure => $package_ensure,
}
}
# Default: true
#
class firewall::linux::redhat (
- $ensure = running,
- $enable = true,
- $service_name = $::firewall::params::service_name,
- $package_name = $::firewall::params::package_name,
+ $ensure = running,
+ $enable = true,
+ $service_name = $::firewall::params::service_name,
+ $package_name = $::firewall::params::package_name,
+ $package_ensure = $::firewall::params::package_ensure,
) inherits ::firewall::params {
# RHEL 7 and later and Fedora 15 and later require the iptables-services
if $package_name {
package { $package_name:
- ensure => present,
+ ensure => $package_ensure,
before => Service[$service_name],
}
}
class firewall::params {
+ $package_ensure = 'present'
case $::osfamily {
'RedHat': {
case $::operatingsystem {
Code Review / puppet-modules / puppetlabs-firewall.git / commitdiff