README: Added example of firewallchain for drop policy on input.

author Jonathan Davies <jpdavs@gmail.com>

Sun, 8 Feb 2015 21:07:21 +0000 (21:07 +0000)

committer Jonathan Davies <jpdavs@gmail.com>

Mon, 30 Mar 2015 15:31:02 +0000 (15:31 +0000)
author Jonathan Davies <jpdavs@gmail.com>
Sun, 8 Feb 2015 21:07:21 +0000 (21:07 +0000)
committer Jonathan Davies <jpdavs@gmail.com>
Mon, 30 Mar 2015 15:31:02 +0000 (15:31 +0000)
diff --git a/README.markdown b/README.markdown

index 8e46d36f43017e338e69cecb58b84f8074a2b528..5e502154cd7fd5188b99b3970a9b30d2d9e84345 100644 (file)
--- a/README.markdown
+++ b/README.markdown
@@ -113,6 +113,16 @@ The rules in the `pre` and `post` classes are fairly general. These two classes
    }
    ```
  
+Alternatively, the [firewallchain](#type-firewallchain) type can be used to set the default policy:
+
+  ```puppet
+  firewallchain { 'INPUT:filter:IPv4':
+    ensure => present,
+    policy => drop,
+    before => undef,
+  }
+  ```
+
  ####Create Firewall Rules
  
  The rules you create here are helpful if you don’t have any existing rules; they help you order your firewall configurations so you don’t lock yourself out of your box.
author	Jonathan Davies <jpdavs@gmail.com>
	Sun, 8 Feb 2015 21:07:21 +0000 (21:07 +0000)
committer	Jonathan Davies <jpdavs@gmail.com>
	Mon, 30 Mar 2015 15:31:02 +0000 (15:31 +0000)