Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/sous-chefs/firewall
Development repository for the firewall cookbook
https://github.com/sous-chefs/firewall
ca2c4634307f05701433d2d08657c19b1b6677ce authored about 6 years ago by Martin Smith <[email protected]>
tacit iptables support for Debian 9
19ebeb3f15eca1309feb9e943290b2db8f9e2827 authored about 6 years ago by Martin Smith <[email protected]>Signed-off-by: Chaim Eliyah <[email protected]>
24599375c1f712db676fb2e8ee3c09559b628e7d authored about 6 years ago by Chaim Eliyah <[email protected]>Signed-off-by: Chaim Eliyah <[email protected]>
3b6d7d9ddf481b223b6dbec5ba2fe55bca65daf7 authored about 6 years ago by Chaim Eliyah <[email protected]>Signed-off-by: Chaim Eliyah <[email protected]>
a3a9578fbe0945b0b3f29e108b1c8e76762114f6 authored about 6 years ago by Chaim Eliyah <[email protected]>The current GCE setup is entirely broken
Signed-off-by: Tim Smith <[email protected]>
ea868277abac4f1225877161a3291054eacd532e authored over 6 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
15f18eaf7cffdd507b9b91e3f3d562a21eac5982 authored over 6 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
849f9cabcf68826e3a33494d69ce9f781a5bee8e authored over 6 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
be19a256a304c0df6efc370bfe60d1140f1edea0 authored over 6 years ago by Tim Smith <[email protected]>use platform_family instead of platform to include all rhels
fb29a2c32d297a9001c99375555260dc2a9448fe authored over 6 years ago by Tim Smith <[email protected]>d5293ad16dc3b1501de6eb39fd4ed31246112997 authored over 6 years ago by Martin Smith <[email protected]>
dfb5893ccd6b4dcf68f7a96bfc3c3d0aec6fc445 authored over 6 years ago by Martin Smith <[email protected]>
remove explicit include of recipe chef_sugar::default
ba548e56d6fc411813649826ecef1c775db85c16 authored over 6 years ago by Martin Smith <[email protected]>
this check should make it safe to release this change
without a major version bump of the firewa...
- since v4.0.0. of the chef_sugar it is no longer required to include
this recipe explicitly: ...
Signed-off-by: Tim Smith <[email protected]>
6ab06dfb3b1223891239983b70bf99b41e6ae13f authored over 6 years ago by Tim Smith <[email protected]>Allow Optional Comments
b2ce88509eeea053ddb40be81f8805c5a2e6a897 authored over 6 years ago by Martin Smith <[email protected]>Signed-off-by: Paul Welch <[email protected]>
0e6b024f713258b421398a59cbbfc43051cfaac1 authored over 6 years ago by pwelch <[email protected]>There are some edge cases where it would be nice to exclude comments.
Signed-off-by: Paul Welch...
cbcd2ece9739f265e2d6682d34914950eb181d6a authored over 6 years ago by pwelch <[email protected]>Signed-off-by: Jaymz Julian <[email protected]>
354d090e98390fdd144031241e5935bc65e87767 authored almost 7 years ago by Jaymz Julian <[email protected]>7d5eca1d5c90f989a23d48714614fe62c96ed86c authored almost 7 years ago by Tim Smith <[email protected]>
Fix security warning in rubocop
ac94bcfd2cce86ba88a7037eb3da937fc27a6394 authored almost 7 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
5d324a47bcc3655fce683370053860dd4b658f47 authored almost 7 years ago by Tim Smith <[email protected]>Reading these leads to writing bad specs
Signed-off-by: Tim Smith <[email protected]>
36b33009876d0e7f3fec466da86de54b378756b5 authored almost 7 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
34d8d65c76f64adaa24202bd3e80e68c0664a7fd authored almost 7 years ago by Tim Smith <[email protected]>Use cookstyle directly
Signed-off-by: Tim Smith <[email protected]>
b9bdae77f386697bbe8df15f71f64784f2bc452b authored almost 7 years ago by Tim Smith <[email protected]>0499a7815e397557d22cde47aa3bbe7ebd271593 authored almost 7 years ago by Martin Smith <[email protected]>
Add `.to_h` workaround for https://github.com/chef/chef/issues/6792
Fixes https://github.com/ch...
491290179511b9cf672779fd7e805c9de483eff3 authored almost 7 years ago by Martin Smith <[email protected]>Update Kitchen config
0f0a2033099fa4b1e02534a42530490ae60df9c6 authored about 7 years ago by Martin Smith <[email protected]>Signed-off-by: Daniel Paulus <[email protected]>
d5a4b6831db8dd0a843dbd232d58a2b3c5cc01ab authored about 7 years ago by Daniel Paulus <[email protected]>Signed-off-by: Daniel Paulus <[email protected]>
3971103d548c9b22879a3d4544a7cd769d384341 authored about 7 years ago by Daniel Paulus <[email protected]>54c804fd8f7793e02a6302f9a093963708f071d5 authored over 7 years ago by Martin Smith <[email protected]>
Incorrect file checking
0d877f00002e0fe08ab40b724be7022604c5fa59 authored over 7 years ago by Martin Smith <[email protected]>
Seems like file checking on Ubuntu is incorrect. Due to this bug,
firewall rules get cre...
Signed-off-by: Tim Smith <[email protected]>
a2605e339248d3a23465e2e67f1f99e38beb7344 authored over 7 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
e1ba789b3aec6fd01c3f9635dfdc73bc5220ff76 authored over 7 years ago by Tim Smith <[email protected]>Release v2.6.1 with new ::disable recipe
dbb09d6c617cead66bc15e40a47e28d3e42f6f5d authored over 7 years ago by Martin Smith <[email protected]>Signed-off-by: Martin Smith <[email protected]>
ab9f3997ebb64bbc6f78d7ceb7a2bb0554df1d86 authored over 7 years ago by Martin Smith <[email protected]>Add disable_firewall recipe for use with clouds
fd850a9da8870e05f3028cd9ad2fbf941aa91c93 authored over 7 years ago by Martin Smith <[email protected]>Signed-off-by: Corey Hemminger <[email protected]>
226021a41ee2a51678b362e54b3cae89a578d02d authored over 7 years ago by Corey Hemminger <[email protected]>Release v2.6.0 with Chef 13 support
8b0c033a55f1a5fd188466c50eea813e4e671d3e authored over 7 years ago by Martin Smith <[email protected]>
- Release v2.6.0 with Chef 13 support
- Confirm things still function on Chef 12
- Fix tests for...
Allow loopback and icmp, when enabled
40a517b90e011a7e198e50563f82d54df01efd49 authored over 7 years ago by Martin Smith <[email protected]>We are adding settings, that default to false, for opening up loopbck and icmp in the default re...
e652e5acdc2e03df6113feddaada6983660c449a authored over 7 years ago by Martin Smith <[email protected]>Initial Chef 13.x support
64fab4accbf2b0d53544e5a6186d11c3a24dce52 authored over 7 years ago by Martin Smith <[email protected]>Signed-off-by: Martin Smith <[email protected]>
b944db8e8b33bd34de9223e6632b071655aae253 authored over 7 years ago by Martin Smith <[email protected]>Signed-off-by: Martin Smith <[email protected]>
ab52ab2b3ecd74130192949a189b7c39fe1613c3 authored over 7 years ago by Martin Smith <[email protected]>Signed-off-by: Martin Smith <[email protected]>
0fd59a66e4101b8cd240f4047522d32bacf1b4fd authored over 7 years ago by Martin Smith <[email protected]>
- Fix method signatures
- Fix Chef.run_context
- Be sure to pass actions
RE: #159
Signed-o...
65d03fae05ad357de07066279d00dd4acfb5f6c6 authored over 7 years ago by Martin Smith <[email protected]>Signed-off-by: Martin Smith <[email protected]>
3920ef44ee3c939bc1ae8552c76264e9d71c85c8 authored over 7 years ago by Martin Smith <[email protected]>Signed-off-by: Martin Smith <[email protected]>
5259a8dcaa174a96e7c04fca42767cad4eaccaef authored over 7 years ago by Martin Smith <[email protected]>Convert away from the DSL for the rule provider.
RE: #159
Signed-off-by: Martin Smith <martin@m...
- Fix method signatures
- Fix Chef.run_context
- Be sure to pass actions
RE: #159
Signed-off-by...
- Convert DSL methods to true method calls
- Use `Chef.run_context` since inline run context is ...
- Switch from DSL actions to plain method actions
- Move to explicit handling of the resource up...
- Begin testing with chef 13.x releases
- Adjust Gemfile appropriately
- Deprecate testing on Ub...
34dd92678de1acb79bdabccb9e8498cc625081a4 authored almost 8 years ago by Martin Smith <[email protected]>
Signed-off-by: Tim Smith <[email protected]>
fec3020c6a04625876a14388e6ece0b26af97bf3 authored about 8 years ago by Tim Smith <[email protected]>746a134f5e8238a179b3cd3749e90253d3619ccf authored about 8 years ago by Tim Smith <[email protected]>
Signed-off-by: Tim Smith <[email protected]>
a431cc9e2e8d1d4d7bc9b5f3ad275035738631e0 authored about 8 years ago by Tim Smith <[email protected]>Obvious fix.
4a1301e6acc4bc34ef516a2adf77f4e2336c5573 authored about 8 years ago by Gavin Kavanaugh <[email protected]>Obvious fix.
34a31384bab109a05dddf9ec87ac1037b599e9af authored about 8 years ago by Gavin Kavanaugh <[email protected]>
- Introduce some documentation
- Some tests for this feature
- If rule will be used by any servi...
f1ddd1e6251dce08cfd266f5e07639c24bfe1d4a authored about 8 years ago by Martin Smith <[email protected]>
cd0f9dbdc7b43b2b5c2eb16343ae309462bbf089 authored about 8 years ago by Martin Smith <[email protected]>
If we don't actually make a chance to the service, don't show the firewall resource as updated. ...
c6e1c943d364b615363ff5a717ce553402eba39b authored about 8 years ago by Martin Smith <[email protected]>For ufw, allow :off as a logging level. Fixes #129.
78e009b3a539fa874c578235ba847e75ae3da284 authored about 8 years ago by Martin Smith <[email protected]>
From Ubuntu 16.04 the service `iptables-persistent` was replaced
by `netfilter-persistent` so we...
b0466b44d2423fcc0679f785d691b3746141257f authored about 8 years ago by Tim Smith <[email protected]>
Signed-off-by: Martin Smith <[email protected]>
e23909a6c26766b5e9ae708a89c11c5cf421882c authored over 8 years ago by Martin Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
ab51fcbd223272b700ab01a4c75a0d9b1fdfbf62 authored over 8 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
9faad61275cd9d5315af769ac310412ce49dc502 authored over 8 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
6c6a1df1c3326fd0e7e8e74b13b1bf1cd0f318a9 authored over 8 years ago by Tim Smith <[email protected]>Signed-off-by: Tim Smith <[email protected]>
8b28ad40ffdfcd7dfee806834f2eabf5a407609b authored over 8 years ago by Tim Smith <[email protected]>For *nat and *filter and other chains that might need duplicated lines containing `:OUTPUT :INPU...
4aa07d71cdb0721d4a9879be54f01a4c8dbb8d4a authored over 8 years ago by Martin Smith <[email protected]>allow ipv6/esp/ah protocol passthrough for ufw
d812098903b94cfd45c35af7ab6f1bc926220a4f authored over 8 years ago by Martin Smith <[email protected]>Obvious fix. (ref https://github.com/chef-cookbooks/community_cookbook_documentation/blob/master...
16659e557c478eb79c7fbccfa139ec9fcf0a77c5 authored over 8 years ago by Erkki Eilonen <[email protected]>Update chef tested version in readme
f33175284bfaa61c026f3b8bc5ed40f0e5f9b146 authored over 8 years ago by Martin Smith <[email protected]>This now matches the version used in .kitchen.yml
81b5b236f2400d5850f3c8d3a1310244682a6143 authored over 8 years ago by Andy Allan <[email protected]>
v2.5.2 (2016-06-02)
-------------------
* Don't issue commands when firewalld isn't active (#140...
Before issuing commands, check if firewalld is active. If the action is :disable on the firewall...
0d1e9269b465e293675acc0473752087064e598b authored over 8 years ago by Martin Smith <[email protected]>Install iptables-services on CentOS / Red Hat 7 and higher.
Fixes #131.
ca7e1d62bf980752f851e3a7edbfe2b99172130c authored over 8 years ago by Martin Smith <[email protected]>Closes https://github.com/chef-cookbooks/firewall/pull/137.
0263af86980d914066c0030a0f6c8725e073558d authored over 8 years ago by Martin Smith <[email protected]>c06da8195658818a6f287a3a91e5fe8db523f419 authored over 8 years ago by Martin Smith <[email protected]>
Release v2.5.1 (2016-05-31)
-------------------
* Protocol guard incorrectly prevents "none" pro...
- Don't write rules.v6 on ubuntu if `node['firewall']['ipv6_enabled']` is disabled
13f9e1c945630a4e32eeb9571d4b6a317837e3f3 authored over 8 years ago by Martin Smith <[email protected]>0264f4f1988a3dadc49efebc700b831e739e353b authored over 8 years ago by Tim Smith <[email protected]>
568855b6c3d26f3b30e969cd7c2921a0bb49fcb4 authored over 8 years ago by Martin Smith <[email protected]>
2c335d25220de31cd4ff1e2205a3b2e9fbcc5bcd authored over 8 years ago by Martin Smith <[email protected]>
a85d87142e1f9d20d98d4dede282bfccc93f2ff2 authored over 8 years ago by Martin Smith <[email protected]>
Warn when a firewall_rule resource appears to be opening all traffic. This should help avoid ina...
cd3ed9036c555678f0a5bc3123b062e2afa2ebb3 authored over 8 years ago by Martin Smith <[email protected]>e429c99d96384ba9dbc6254dfbcd67062421f894 authored over 8 years ago by Tim Smith <[email protected]>
Fix notify_firewall attribute crashing firewall_rule provider when set to false.
9ac90377c2d7473917978afef3623ac928ee4b98 authored over 8 years ago by Martin Smith <[email protected]>to false.
* firewall_rule.notify_firewall if set to False crashes the provider
because the code...
protocol guard incorrectly prevents "none" protocol type on UFW helper.
8863b973b9bde71e66fb0fb20959af93d6863d59 authored over 8 years ago by Martin Smith <[email protected]>209ece67721b36aef8bb857d567cfe507773c6d7 authored almost 9 years ago by Jason J. W. Williams <[email protected]>
Check the value, then use port_to_s, not the other way around.
771835c68fba1dab9e149771ed9ed30707989853 authored almost 9 years ago by Martin Smith <[email protected]>2008ac75274cb0a5bff47965be9aa1ed0055eb85 authored almost 9 years ago by Martin Smith <[email protected]>
We shouldn't reference `source_interface`, since that doesn't exist.
Fixes #123.
af73c9eb671d532e4fd66e4b029e7166b1d4c8f8 authored almost 9 years ago by Martin Smith <[email protected]>e9fc73b16940a06a39ce2b35cd8dda59395c7124 authored almost 9 years ago by Martin Smith <[email protected]>