How do you modify the default settings for the internal firewall chains using the firewall module?
33 views
Skip to first unread message
Trevor Vaughan
Mar 26, 2012, 3:10:37 PM3/26/12
to puppet...@googlegroups.com
The documentation seems to indicate that I can do something like:
firewallchain { ':INPUT:IP': policy => 'drop' }
But this doesn't work.
Thanks,
Trevor
--
Trevor Vaughan
Vice President, Onyx Point, Inc
(410) 541-6699
tvau...@onyxpoint.com
-- This account not approved for unencrypted proprietary information --
Chris O'Donnell
Mar 27, 2012, 9:36:46 PM3/27/12
to puppet...@googlegroups.com
I just went through this last week. This isn't available in the stable 0.4 release from puppetforge, you need to get the current master branch from https://github.com/kbarber/puppetlabs-firewall
Once you get this, you can do this:
firewallchain { 'INPUT:filter:IPv4':
policy => 'drop',
}
Note I've not tried formatting my rules as you have, but the above worked for me. Also note that this has only been in the master branch in Github for about a week, so if you find a bug, please submit it.
- Chris
Reply all
Reply to author
Forward
0 new messages