]> review.fuel-infra Code Review - puppet-modules/puppetlabs-firewall.git/commitdiff
Code Review / puppet-modules / puppetlabs-firewall.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 90602d1)
Release version 2.7.0 v2.7.0
authorAuto-release <team-modules@puppet.com>
Thu, 15 Oct 2020 10:57:07 +0000 (10:57 +0000)
committerAuto-release <team-modules@puppet.com>
Thu, 15 Oct 2020 10:57:07 +0000 (10:57 +0000)
CHANGELOG.md patch | blob | history
REFERENCE.md patch | blob | history
metadata.json patch | blob | history

diff --git a/CHANGELOG.md b/CHANGELOG.md
index c3bde6948c263ea13a07e2e87de9793e0216ea0b..8d05ff7222800de573f2c70a86b5b249437bbdce 100644 (file)
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,9 +2,17 @@
 
 All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/) and this project adheres to [Semantic Versioning](http://semver.org).
 
-## [v2.6.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.5.0) (2020-10-01)
+## [v2.7.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.7.0) (2020-10-15)
 
-[Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.5.0...v2.5.0)
+[Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.6.0...v2.7.0)
+
+### Added
+
+- \(IAC-1190\) add `ignore\_foreign` when purging firewallchains [\#948](https://github.com/puppetlabs/puppetlabs-firewall/pull/948) ([DavidS](https://github.com/DavidS))
+
+## [v2.6.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.6.0) (2020-10-01)
+
+[Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.5.0...v2.6.0)
 
 ### Added
 
diff --git a/REFERENCE.md b/REFERENCE.md
index caed6fb7399bccbd921c7182592a87a41be12c91..bd2991fc7c523942590755d6e69dc6a43804fcb0 100644 (file)
--- a/REFERENCE.md
+++ b/REFERENCE.md
@@ -77,7 +77,7 @@ Data type: `Any`
 
 Specify the name of the IPv4 iptables service.
 
-Default value: `$::firewall::params::service_name`
+Default value: `$firewall::params::service_name`
 
 ##### `service_name_v6`
 
@@ -85,7 +85,7 @@ Data type: `Any`
 
 Specify the name of the IPv6 iptables service.
 
-Default value: `$::firewall::params::service_name_v6`
+Default value: `$firewall::params::service_name_v6`
 
 ##### `package_name`
 
@@ -93,7 +93,7 @@ Data type: `Any`
 
 Specify the platform-specific package(s) to install.
 
-Default value: `$::firewall::params::package_name`
+Default value: `$firewall::params::package_name`
 
 ##### `ebtables_manage`
 
@@ -1456,6 +1456,18 @@ firewallchain { 'INPUT:filter:IPv4':
 }
 ```
 
+##### `ignore_foreign`
+
+Valid values: ``false``, ``true``
+
+Ignore rules that do not match the puppet title pattern "^\d+[[:graph:][:space:]]" when purging unmanaged firewall rules
+in this chain.
+This can be used to ignore rules that were not put in by puppet. Beware that nothing keeps other systems from
+configuring firewall rules with a comment that starts with digits, and is indistinguishable from puppet-configured
+rules.
+
+Default value: ``false``
+
 ##### `name`
 
 namevar
diff --git a/metadata.json b/metadata.json
index d42018b9202a4c3a83aa2322f334075ac25d8ee8..3c6944d15fe707133ab6cd497c034e6eb7da33ed 100644 (file)
--- a/metadata.json
+++ b/metadata.json
@@ -1,6 +1,6 @@
 {
   "name": "puppetlabs-firewall",
-  "version": "2.6.0",
+  "version": "2.7.0",
   "author": "puppetlabs",
   "summary": "Manages Firewalls such as iptables",
   "license": "Apache-2.0",