From ee78d8b334ed4905bda9e867a950353552f531d3 Mon Sep 17 00:00:00 2001
From: Jonathan Davies <jpdavs@gmail.com>
Date: Sun, 8 Feb 2015 21:07:21 +0000
Subject: [PATCH] README: Added example of firewallchain for drop policy on
 input.

---
 README.markdown | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/README.markdown b/README.markdown
index 8e46d36..5e50215 100644
--- a/README.markdown
+++ b/README.markdown
@@ -113,6 +113,16 @@ The rules in the `pre` and `post` classes are fairly general. These two classes
   }
   ```
 
+Alternatively, the [firewallchain](#type-firewallchain) type can be used to set the default policy:
+
+  ```puppet
+  firewallchain { 'INPUT:filter:IPv4':
+    ensure => present,
+    policy => drop,
+    before => undef,
+  }
+  ```
+
 ####Create Firewall Rules
 
 The rules you create here are helpful if you don’t have any existing rules; they help you order your firewall configurations so you don’t lock yourself out of your box.
-- 
2.45.2