Uploaded image for project: 'Modules'
  1. Modules
  2. MODULES-10703

firewall : Support the usage of custom rules

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Open
    • Priority: Normal
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: firewall
    • Labels:
      None
    • Template:
      MODULES Bug Template
    • QA Risk Assessment:
      Needs Assessment

      Description

      Basic Info
      Module Version: 2.4.0
      Puppet Version: 5.x
      OS Name/Version: Debian 10

      In some environments, custom and/or experimental iptables modules are used. These rules currently cannot be managed by the puppet iptables module. Adding and maintaining custom forks of the firewall module imposes high maintenance efforts. Especially when custom iptables modules are used and changes cannot be committed upstream.

      The ability to supply custom iptables arguments, which are not checked but simply appended to the iptables command, would solve this issue.

      Desired Behavior:

      The firewall type should have another option, which gets added to the iptables commands:

      firewall

      { '100 Testing':   chain => "INPUT",   custom_args => " -m mycustommodule --mycustomarg" }

      Actual Behavior:

      Currently, there is no way to supply custom arguments to the iptables commands.

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            fetzerms Matthias Fetzer
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:

                Zendesk Support