Puppet Class: iptables::post

Defined in:
manifests/post.pp

Summary

Configure closing firewall rules

Overview



3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
 
# File 'manifests/post.pp', line 3

class iptables::post {
  firewall { '999 drop all':
    proto  => 'all',
    action => 'drop',
    before => undef,
  }

  firewall { '999 drop all v6':
    proto    => 'all',
    action   => 'drop',
    before   => undef,
    provider => 'ip6tables',
  }

  firewall { '999 drop all forwards':
    chain  => 'FORWARD',
    proto  => 'all',
    action => 'drop',
    before => undef,
  }

  firewall { '999 drop all forwards v6':
    chain    => 'FORWARD',
    proto    => 'all',
    action   => 'drop',
    before   => undef,
    provider => 'ip6tables',
  }
}