diff options
| author | Tim Meusel <tim@bastelfreak.de> | 2018-12-19 13:59:33 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2018-12-19 13:59:33 +0100 |
| commit | 85e400ba3a89c47546a8d11a74424bba92685b7c (patch) | |
| tree | d76b99423d5d5b05ed5ce3e38c80ed3be1ac3411 /manifests/init.pp | |
| parent | 0a25439016f4e99d4f73457c9f19436329608ca6 (diff) | |
| parent | f3136278ebd816c58e305e937254e5ca0e2c0a91 (diff) | |
| download | puppet-ferm-85e400ba3a89c47546a8d11a74424bba92685b7c.tar.gz puppet-ferm-85e400ba3a89c47546a8d11a74424bba92685b7c.tar.bz2 | |
Merge pull request #32 from bastelfreak/log2
Implement logging to kernel log
Diffstat (limited to 'manifests/init.pp')
| -rw-r--r-- | manifests/init.pp | 28 |
1 files changed, 20 insertions, 8 deletions
diff --git a/manifests/init.pp b/manifests/init.pp index 0096c3a..82f163c 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -7,30 +7,39 @@ # manage_service => true, # } # -# @param manage_service [Boolean] disable/enable the management of the ferm daemon +# @param manage_service Disable/Enable the management of the ferm daemon # Default value: false # Allowed values: (true|false) -# @param manage_configfile [Boolean] disable/enable the management of the ferm default config +# @param manage_configfile Disable/Enable the management of the ferm default config # Default value: false # Allowed values: (true|false) -# @param configfile [Stdlib::Absolutepath] path to the config file +# @param configfile Path to the config file # Default value: /etc/ferm.conf # Allowed values: Stdlib::Absolutepath -# @param disable_conntrack [Boolean] disable/enable the generation of conntrack rules +# @param disable_conntrack Disable/Enable the generation of conntrack rules # Default value: false # Allowed values: (true|false) -# @param forward_policy [Ferm::Policies] default policy for the FORWARD chain +# @param forward_policy Default policy for the FORWARD chain # Default value: DROP # Allowed values: (ACCEPT|DROP|REJECT) -# @param output_policy [Ferm::Policies] default policy for the OUTPUT chain +# @param output_policy Default policy for the OUTPUT chain # Default value: ACCEPT # Allowed values: (ACCEPT|DROP|REJECT) -# @param input_policy [Ferm::Policies] default policy for the INPUT chain +# @param input_policy Default policy for the INPUT chain # Default value: DROP # Allowed values: (ACCEPT|DROP|REJECT) -# @param rules a hash that holds all data for ferm::rule +# @param rules A hash that holds all data for ferm::rule # Default value: Empty Hash # Allowed value: Any Hash +# @param forward_log_dropped_packets Enable/Disable logging in the FORWARD chain of packets to the kernel log, if no explicit chain matched +# Default value: false +# Allowed values: (true|false) +# @param output_log_dropped_packets Enable/Disable logging in the OUTPUT chain of packets to the kernel log, if no explicit chain matched +# Default value: false +# Allowed values: (true|false) +# @param input_log_dropped_packets Enable/Disable logging in the INPUT chain of packets to the kernel log, if no explicit chain matched +# Default value: false +# Allowed values: (true|false) class ferm ( Boolean $manage_service, Boolean $manage_configfile, @@ -39,6 +48,9 @@ class ferm ( Ferm::Policies $forward_policy, Ferm::Policies $output_policy, Ferm::Policies $input_policy, + Boolean $forward_log_dropped_packets, + Boolean $output_log_dropped_packets, + Boolean $input_log_dropped_packets, Hash $rules, ) { contain ferm::install |