puppetlabs-firewall and fail2ban
189 views
Skip to first unread message
Peter Berghold
Apr 20, 2015, 10:57:43 AM4/20/15
to puppet-users
I'm using the Puppet Labs firewall module and I noticed much to my chagrin that when the agent runs and applies rules it undoes all the work that fail2ban did.
Since I'm also setting up shorewall this thread applies to that as well.
Has anybody gotten this module to play nice with fail2ban?
Tim Bishop
Apr 21, 2015, 6:02:13 AM4/21/15
to Peter Berghold, puppet-users
On Mon, Apr 20, 2015 at 02:57:36PM +0000, Peter Berghold wrote:
> I'm using the Puppet Labs firewall module and I noticed much to my
> chagrin that when the agent runs and applies rules it undoes all the
> work that fail2ban did.
I have the following:
> I'm using the Puppet Labs firewall module and I noticed much to my
> chagrin that when the agent runs and applies rules it undoes all the
> work that fail2ban did.
firewallchain { 'INPUT:filter:IPv4':
purge => true,
ignore => [ '-j fail2ban-ssh' ],
}
If you search the puppetlabs/firewall documentation for "fail2ban"
there's an example buried in there.
Tim.
--
Tim Bishop
http://www.bishnet.net/tim/
PGP Key: 0x6C226B37FDF38D55
Reply all
Reply to author
Forward
0 new messages