Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/sous-chefs/firewall

Development repository for the firewall cookbook
https://github.com/sous-chefs/firewall

Release v2.7.0

ca2c4634307f05701433d2d08657c19b1b6677ce authored about 6 years ago by Martin Smith <[email protected]>
Merge pull request #202 from chaim1221/master

tacit iptables support for Debian 9

19ebeb3f15eca1309feb9e943290b2db8f9e2827 authored about 6 years ago by Martin Smith <[email protected]>
comply with chef delivery requirements

Signed-off-by: Chaim Eliyah <[email protected]>

24599375c1f712db676fb2e8ee3c09559b628e7d authored about 6 years ago by Chaim Eliyah <[email protected]>
enable ufw for debian 9, improve naming in cases of ambiguity

Signed-off-by: Chaim Eliyah <[email protected]>

3b6d7d9ddf481b223b6dbec5ba2fe55bca65daf7 authored about 6 years ago by Chaim Eliyah <[email protected]>
tacit iptables support for Debian 9

Signed-off-by: Chaim Eliyah <[email protected]>

a3a9578fbe0945b0b3f29e108b1c8e76762114f6 authored about 6 years ago by Chaim Eliyah <[email protected]>
Switch to simple unit/lint testing

The current GCE setup is entirely broken

Signed-off-by: Tim Smith <[email protected]>

ea868277abac4f1225877161a3291054eacd532e authored over 6 years ago by Tim Smith <[email protected]>
Remove .rubocop.yml and correct all warnings

Signed-off-by: Tim Smith <[email protected]>

15f18eaf7cffdd507b9b91e3f3d562a21eac5982 authored over 6 years ago by Tim Smith <[email protected]>
Update Foodcritic rules we disable

Signed-off-by: Tim Smith <[email protected]>

849f9cabcf68826e3a33494d69ce9f781a5bee8e authored over 6 years ago by Tim Smith <[email protected]>
Release 2.6.5

Signed-off-by: Tim Smith <[email protected]>

be19a256a304c0df6efc370bfe60d1140f1edea0 authored over 6 years ago by Tim Smith <[email protected]>
Merge pull request #190 from jjlimepoint/platform_family_vs_platform

use platform_family instead of platform to include all rhels

fb29a2c32d297a9001c99375555260dc2a9448fe authored over 6 years ago by Tim Smith <[email protected]>
Release v2.6.4

d5293ad16dc3b1501de6eb39fd4ed31246112997 authored over 6 years ago by Martin Smith <[email protected]>
Begin testing with chef 14

dfb5893ccd6b4dcf68f7a96bfc3c3d0aec6fc445 authored over 6 years ago by Martin Smith <[email protected]>
Merge pull request #197 from davidalpert/remove-chef-sugar-default

remove explicit include of recipe chef_sugar::default

ba548e56d6fc411813649826ecef1c775db85c16 authored over 6 years ago by Martin Smith <[email protected]>
restore explicit include of chef-sugar:default with a version check

this check should make it safe to release this change
without a major version bump of the firewa...

028527e4f3ef35616abbc404fded9032761f5369 authored over 6 years ago by David Alpert <[email protected]>
remove explicit include of recipe chef_sugar::default

- since v4.0.0. of the chef_sugar it is no longer required to include
this recipe explicitly: ...

24482b6ee06e4c233d221f97b300ccbc6153932d authored over 6 years ago by David Alpert <[email protected]>
Cookstyle fix

Signed-off-by: Tim Smith <[email protected]>

6ab06dfb3b1223891239983b70bf99b41e6ae13f authored over 6 years ago by Tim Smith <[email protected]>
Merge pull request #195 from pwelch/allow-optional-comments

Allow Optional Comments

b2ce88509eeea053ddb40be81f8805c5a2e6a897 authored over 6 years ago by Martin Smith <[email protected]>
Add Test for ignoring rule comments

Signed-off-by: Paul Welch <[email protected]>

0e6b024f713258b421398a59cbbfc43051cfaac1 authored over 6 years ago by pwelch <[email protected]>
Allow Optional Comments

There are some edge cases where it would be nice to exclude comments.

Signed-off-by: Paul Welch...

cbcd2ece9739f265e2d6682d34914950eb181d6a authored over 6 years ago by pwelch <[email protected]>
use platform_family instead of platform to include all rhels

Signed-off-by: Jaymz Julian <[email protected]>

354d090e98390fdd144031241e5935bc65e87767 authored almost 7 years ago by Jaymz Julian <[email protected]>
Fix some requirements and testing readme information

7d5eca1d5c90f989a23d48714614fe62c96ed86c authored almost 7 years ago by Tim Smith <[email protected]>
Merge pull request #189 from chef-cookbooks/fix_security_warning

Fix security warning in rubocop

ac94bcfd2cce86ba88a7037eb3da937fc27a6394 authored almost 7 years ago by Tim Smith <[email protected]>
Add a delivery local config

Signed-off-by: Tim Smith <[email protected]>

5d324a47bcc3655fce683370053860dd4b658f47 authored almost 7 years ago by Tim Smith <[email protected]>
Don't use a chefspec report

Reading these leads to writing bad specs

Signed-off-by: Tim Smith <[email protected]>

36b33009876d0e7f3fec466da86de54b378756b5 authored almost 7 years ago by Tim Smith <[email protected]>
Use the kitchen slugs

Signed-off-by: Tim Smith <[email protected]>

34d8d65c76f64adaa24202bd3e80e68c0664a7fd authored almost 7 years ago by Tim Smith <[email protected]>
Fix security warning in rubocop

Use cookstyle directly

Signed-off-by: Tim Smith <[email protected]>

b9bdae77f386697bbe8df15f71f64784f2bc452b authored almost 7 years ago by Tim Smith <[email protected]>
Release v2.6.3

0499a7815e397557d22cde47aa3bbe7ebd271593 authored almost 7 years ago by Martin Smith <[email protected]>
Workaround for Hash and Array merges

Add `.to_h` workaround for https://github.com/chef/chef/issues/6792

Fixes https://github.com/ch...

491290179511b9cf672779fd7e805c9de483eff3 authored almost 7 years ago by Martin Smith <[email protected]>
Merge pull request #182 from dpnl87/kitchen-fixes

Update Kitchen config

0f0a2033099fa4b1e02534a42530490ae60df9c6 authored about 7 years ago by Martin Smith <[email protected]>
Use latest stable chef version

Signed-off-by: Daniel Paulus <[email protected]>

d5a4b6831db8dd0a843dbd232d58a2b3c5cc01ab authored about 7 years ago by Daniel Paulus <[email protected]>
update centos to 7.3

Signed-off-by: Daniel Paulus <[email protected]>

3971103d548c9b22879a3d4544a7cd769d384341 authored about 7 years ago by Daniel Paulus <[email protected]>
Release v2.6.2

54c804fd8f7793e02a6302f9a093963708f071d5 authored over 7 years ago by Martin Smith <[email protected]>
Merge pull request #173 from chef-cookbooks/DevopsDance-mwolny/dziurka

Incorrect file checking

0d877f00002e0fe08ab40b724be7022604c5fa59 authored over 7 years ago by Martin Smith <[email protected]>
Incorrect file checking

Seems like file checking on Ubuntu is incorrect. Due to this bug,
firewall rules get cre...

818a1ae611c3e7406c14c139e311d15ebd71d0eb authored over 7 years ago by Marcin Wolny <[email protected]>
Test on CentOS 6.9 in TK

Signed-off-by: Tim Smith <[email protected]>

a2605e339248d3a23465e2e67f1f99e38beb7344 authored over 7 years ago by Tim Smith <[email protected]>
Update kitchen config

Signed-off-by: Tim Smith <[email protected]>

e1ba789b3aec6fd01c3f9635dfdc73bc5220ff76 authored over 7 years ago by Tim Smith <[email protected]>
Merge pull request #165 from chef-cookbooks/release

Release v2.6.1 with new ::disable recipe

dbb09d6c617cead66bc15e40a47e28d3e42f6f5d authored over 7 years ago by Martin Smith <[email protected]>
Release v2.6.1 with new ::disable recipe

Signed-off-by: Martin Smith <[email protected]>

ab9f3997ebb64bbc6f78d7ceb7a2bb0554df1d86 authored over 7 years ago by Martin Smith <[email protected]>
Merge pull request #164 from Stromweld/master

Add disable_firewall recipe for use with clouds

fd850a9da8870e05f3028cd9ad2fbf941aa91c93 authored over 7 years ago by Martin Smith <[email protected]>
Add disable_firewall recipe for use with clouds and other places people want to make sure OS firewall is disabled.

Signed-off-by: Corey Hemminger <[email protected]>

226021a41ee2a51678b362e54b3cae89a578d02d authored over 7 years ago by Corey Hemminger <[email protected]>
Merge pull request #163 from chef-cookbooks/release

Release v2.6.0 with Chef 13 support

8b0c033a55f1a5fd188466c50eea813e4e671d3e authored over 7 years ago by Martin Smith <[email protected]>
Release v2.6.0 with Chef 13 support

- Release v2.6.0 with Chef 13 support
- Confirm things still function on Chef 12
- Fix tests for...

11fa037c7ac36ebd5fcbb3481dec85eba22e70bc authored over 7 years ago by Martin Smith <[email protected]>
Merge pull request #161 from chef-cookbooks/allow_icmp_loopback

Allow loopback and icmp, when enabled

40a517b90e011a7e198e50563f82d54df01efd49 authored over 7 years ago by Martin Smith <[email protected]>
Allow loopback and icmp, when enabled

We are adding settings, that default to false, for opening up loopbck and icmp in the default re...

e652e5acdc2e03df6113feddaada6983660c449a authored over 7 years ago by Martin Smith <[email protected]>
Merge pull request #160 from chef-cookbooks/chef13

Initial Chef 13.x support

64fab4accbf2b0d53544e5a6186d11c3a24dce52 authored over 7 years ago by Martin Smith <[email protected]>
More rubocop complaints addressed.

Signed-off-by: Martin Smith <[email protected]>

b944db8e8b33bd34de9223e6632b071655aae253 authored over 7 years ago by Martin Smith <[email protected]>
Bump to newer Chef without chef_gem bug on Windows

Signed-off-by: Martin Smith <[email protected]>

ab52ab2b3ecd74130192949a189b7c39fe1613c3 authored over 7 years ago by Martin Smith <[email protected]>
Address foodcritic complaints

Signed-off-by: Martin Smith <[email protected]>

0fd59a66e4101b8cd240f4047522d32bacf1b4fd authored over 7 years ago by Martin Smith <[email protected]>
Chef 13.x update for remaining providers

- Fix method signatures
- Fix Chef.run_context
- Be sure to pass actions

RE: #159

Signed-o...

65d03fae05ad357de07066279d00dd4acfb5f6c6 authored over 7 years ago by Martin Smith <[email protected]>
Stop specifying box name

Signed-off-by: Martin Smith <[email protected]>

3920ef44ee3c939bc1ae8552c76264e9d71c85c8 authored over 7 years ago by Martin Smith <[email protected]>
Fix rubocop complaints

Signed-off-by: Martin Smith <[email protected]>

5259a8dcaa174a96e7c04fca42767cad4eaccaef authored over 7 years ago by Martin Smith <[email protected]>
Convert rule provider away from DSL

Convert away from the DSL for the rule provider.

RE: #159
Signed-off-by: Martin Smith <martin@m...

6a061e3dd8b42fde2bb7014c48dd355881ae7b73 authored over 7 years ago by Martin Smith <[email protected]>
Chef 13.x update for iptables provider

- Fix method signatures
- Fix Chef.run_context
- Be sure to pass actions

RE: #159
Signed-off-by...

a39a01ac7c4e0aef35a448e7b493d05fa5dcee81 authored over 7 years ago by Martin Smith <[email protected]>
Clean up firewalld provider for Chef 13

- Convert DSL methods to true method calls
- Use `Chef.run_context` since inline run context is ...

f69f6ad675f9eb5e0d82c66faba9e2c206c6ddbe authored over 7 years ago by Martin Smith <[email protected]>
Update ufw provider for Chef 13.x

- Switch from DSL actions to plain method actions
- Move to explicit handling of the resource up...

9677634541f598ed9ec77dca61c5d4598c746ffa authored over 7 years ago by Martin Smith <[email protected]>
Updating with Chef 13.x support

- Begin testing with chef 13.x releases
- Adjust Gemfile appropriately
- Deprecate testing on Ub...

00b3668d136cf6c0eae16246f2c13a85e6f2d5e9 authored over 7 years ago by Martin Smith <[email protected]>
Release v2.5.4

34dd92678de1acb79bdabccb9e8498cc625081a4 authored almost 8 years ago by Martin Smith <[email protected]>
Stick to a working Rake for now

Signed-off-by: Tim Smith <[email protected]>

fec3020c6a04625876a14388e6ece0b26af97bf3 authored about 8 years ago by Tim Smith <[email protected]>
Update Test Kitchen platforms to the latest

746a134f5e8238a179b3cd3749e90253d3619ccf authored about 8 years ago by Tim Smith <[email protected]>
Update copyright headers

Signed-off-by: Tim Smith <[email protected]>

a431cc9e2e8d1d4d7bc9b5f3ad275035738631e0 authored about 8 years ago by Tim Smith <[email protected]>
Update readme to include package_options

Obvious fix.

4a1301e6acc4bc34ef516a2adf77f4e2336c5573 authored about 8 years ago by Gavin Kavanaugh <[email protected]>
Allow package options to be passed through to the package install for firewall

Obvious fix.

34a31384bab109a05dddf9ec87ac1037b599e9af authored about 8 years ago by Gavin Kavanaugh <[email protected]>
Define policy for Windows Firewall and use the attributes to set desired policy

- Introduce some documentation
- Some tests for this feature
- If rule will be used by any servi...

dd39b95a712234fcbcd6db053fde3ced6186db2d authored about 8 years ago by Suleyman Kutlu <[email protected]>
Release v2.5.3

f1ddd1e6251dce08cfd266f5e07639c24bfe1d4a authored about 8 years ago by Martin Smith <[email protected]>
Fix foodcritic indentation complain.

cd0f9dbdc7b43b2b5c2eb16343ae309462bbf089 authored about 8 years ago by Martin Smith <[email protected]>
Don't show firewall resource as updated

If we don't actually make a chance to the service, don't show the firewall resource as updated. ...

c6e1c943d364b615363ff5a717ce553402eba39b authored about 8 years ago by Martin Smith <[email protected]>
Add :off as a valid logging level

For ufw, allow :off as a logging level. Fixes #129.

78e009b3a539fa874c578235ba847e75ae3da284 authored about 8 years ago by Martin Smith <[email protected]>
Add support for Ubuntu 16.04

From Ubuntu 16.04 the service `iptables-persistent` was replaced
by `netfilter-persistent` so we...

85629e4f65e6f14e3ea29123c2a233f713502fec authored about 8 years ago by Adrien Crivelli <[email protected]>
Update Github PR template

b0466b44d2423fcc0679f785d691b3746141257f authored about 8 years ago by Tim Smith <[email protected]>
Fix Gemfile for cookstyle and stove

Signed-off-by: Martin Smith <[email protected]>

e23909a6c26766b5e9ae708a89c11c5cf421882c authored over 8 years ago by Martin Smith <[email protected]>
Add windows to metadata and add chef_version

Signed-off-by: Tim Smith <[email protected]>

ab51fcbd223272b700ab01a4c75a0d9b1fdfbf62 authored over 8 years ago by Tim Smith <[email protected]>
Use the updated Rakefile

Signed-off-by: Tim Smith <[email protected]>

9faad61275cd9d5315af769ac310412ce49dc502 authored over 8 years ago by Tim Smith <[email protected]>
Update ignore files

Signed-off-by: Tim Smith <[email protected]>

6c6a1df1c3326fd0e7e8e74b13b1bf1cd0f318a9 authored over 8 years ago by Tim Smith <[email protected]>
Add maintainers files

Signed-off-by: Tim Smith <[email protected]>

8b28ad40ffdfcd7dfee806834f2eabf5a407609b authored over 8 years ago by Tim Smith <[email protected]>
Add additional excludes to special chains

For *nat and *filter and other chains that might need duplicated lines containing `:OUTPUT :INPU...

4aa07d71cdb0721d4a9879be54f01a4c8dbb8d4a authored over 8 years ago by Martin Smith <[email protected]>
Merge pull request #136 from erkki/ipsec_proto

allow ipv6/esp/ah protocol passthrough for ufw

d812098903b94cfd45c35af7ab6f1bc926220a4f authored over 8 years ago by Martin Smith <[email protected]>
allow ipv6/esp/ah protocols for ufw as per http://manpages.ubuntu.com/manpages/precise/man8/ufw.8.html

Obvious fix. (ref https://github.com/chef-cookbooks/community_cookbook_documentation/blob/master...

16659e557c478eb79c7fbccfa139ec9fcf0a77c5 authored over 8 years ago by Erkki Eilonen <[email protected]>
Merge pull request #142 from gravitystorm/patch-1

Update chef tested version in readme

f33175284bfaa61c026f3b8bc5ed40f0e5f9b146 authored over 8 years ago by Martin Smith <[email protected]>
Update chef tested version in readme

This now matches the version used in .kitchen.yml

81b5b236f2400d5850f3c8d3a1310244682a6143 authored over 8 years ago by Andy Allan <[email protected]>
Release v2.5.2

v2.5.2 (2016-06-02)
-------------------
* Don't issue commands when firewalld isn't active (#140...

dada6ad8766a9bdb86f41e589db48688c0234ac9 authored over 8 years ago by Martin Smith <[email protected]>
Check if firewalld is active

Before issuing commands, check if firewalld is active. If the action is :disable on the firewall...

0d1e9269b465e293675acc0473752087064e598b authored over 8 years ago by Martin Smith <[email protected]>
Install iptables-services on CentOS / Red Hat 7 and higher.

Install iptables-services on CentOS / Red Hat 7 and higher.

Fixes #131.

ca7e1d62bf980752f851e3a7edbfe2b99172130c authored over 8 years ago by Martin Smith <[email protected]>
Ensure iptables-persistent is always started

Closes https://github.com/chef-cookbooks/firewall/pull/137.

0263af86980d914066c0030a0f6c8725e073558d authored over 8 years ago by Martin Smith <[email protected]>
Update Ruby version on Travis for listen gem

c06da8195658818a6f287a3a91e5fe8db523f419 authored over 8 years ago by Martin Smith <[email protected]>
Release v2.5.1

Release v2.5.1 (2016-05-31)
-------------------
* Protocol guard incorrectly prevents "none" pro...

27465b15f583c5669e17c7070663bb2c3d603ff6 authored over 8 years ago by Martin Smith <[email protected]>
Add ipv6 attribute respect to Ubuntu iptables

- Don't write rules.v6 on ubuntu if `node['firewall']['ipv6_enabled']` is disabled

13f9e1c945630a4e32eeb9571d4b6a317837e3f3 authored over 8 years ago by Martin Smith <[email protected]>
Update platforms in Test Kitchen [skip-ci]

0264f4f1988a3dadc49efebc700b831e739e353b authored over 8 years ago by Tim Smith <[email protected]>
Pin chef higher

568855b6c3d26f3b30e969cd7c2921a0bb49fcb4 authored over 8 years ago by Martin Smith <[email protected]>
Add chef to Gemfile

2c335d25220de31cd4ff1e2205a3b2e9fbcc5bcd authored over 8 years ago by Martin Smith <[email protected]>
Bump ruby version to 2.2

a85d87142e1f9d20d98d4dede282bfccc93f2ff2 authored over 8 years ago by Martin Smith <[email protected]>
Add warning if firewall rule opens all traffic

Warn when a firewall_rule resource appears to be opening all traffic. This should help avoid ina...

cd3ed9036c555678f0a5bc3123b062e2afa2ebb3 authored over 8 years ago by Martin Smith <[email protected]>
Add issues and PR templates

e429c99d96384ba9dbc6254dfbcd67062421f894 authored over 8 years ago by Tim Smith <[email protected]>
Merge pull request #130 from williamsjj/master

Fix notify_firewall attribute crashing firewall_rule provider when set to false.

9ac90377c2d7473917978afef3623ac928ee4b98 authored over 8 years ago by Martin Smith <[email protected]>
Fix notify_firewall attribute crashing firewall_rule provider when set

to false.
* firewall_rule.notify_firewall if set to False crashes the provider
because the code...

b77b8e646657c057f134434257e9da6ea33ca34d authored over 8 years ago by Jason J. W. Williams <[email protected]>
Merge pull request #128 from williamsjj/master

protocol guard incorrectly prevents "none" protocol type on UFW helper.

8863b973b9bde71e66fb0fb20959af93d6863d59 authored over 8 years ago by Martin Smith <[email protected]>
protocol guard incorrectly prevents "none" protocol type on UFW helper.

209ece67721b36aef8bb857d567cfe507773c6d7 authored almost 9 years ago by Jason J. W. Williams <[email protected]>
Fix wrongly ordered conditional

Check the value, then use port_to_s, not the other way around.

771835c68fba1dab9e149771ed9ed30707989853 authored almost 9 years ago by Martin Smith <[email protected]>
Release v2.5.0

2008ac75274cb0a5bff47965be9aa1ed0055eb85 authored almost 9 years ago by Martin Smith <[email protected]>
Fix incorrect attribute reference

We shouldn't reference `source_interface`, since that doesn't exist.

Fixes #123.

af73c9eb671d532e4fd66e4b029e7166b1d4c8f8 authored almost 9 years ago by Martin Smith <[email protected]>
Don't require underscores unless >9 digits

e9fc73b16940a06a39ce2b35cd8dda59395c7124 authored almost 9 years ago by Martin Smith <[email protected]>