Adoptable Cookbooks List

Looking for a cookbook to adopt? You can now see a list of cookbooks available for adoption!
List of Adoptable Cookbooks

Supermarket Belongs to the Community

Supermarket belongs to the community. While Chef has the responsibility to keep it running and be stewards of its functionality, what it does and how it works is driven by the community. The chef/supermarket repository will continue to be where development of the Supermarket application takes place. Come be part of shaping the direction of Supermarket by opening issues and pull requests or by joining us on the Chef Mailing List.

Select Badges

Select Supported Platforms

RSS

firewall-ex (2) Versions 0.1.1

Installs/Configures extended networking

Berkshelf/Librarian
Policyfile
Knife
cookbook 'firewall-ex', '~> 0.1.1'
cookbook 'firewall-ex', '~> 0.1.1', :supermarket
knife cookbook site install firewall-ex
knife cookbook site download firewall-ex
README
Dependencies
Quality 56%

firewall-ex cookbook

Build Status

Simple networking LWRP for Debian/Ubuntu nodes.

Extends 'firewall' to incorporate after, before, and sysctl rules as part of the firewall configuration.

Includes also guards for OpenVZ containers.

Tested on

  • Ubuntu 12.04
  • Ubuntu 14.04
  • Debian 7

Requirements

Depends on the firewall cookbook.

Usage

Including the default recipe will allow access to the LWRP along with install the base 'firewall::default' recipe. Just use in place of the normal firewall LWRP.

firewall_ex 'net' do
  send_redirects false

  postrouting '-s 10.10.10.10 -j MASQUERADE'

  forward '-m state --state RELATED,ESTABLISHED -j ACCEPT'
  forward '-j ACCEPT'

  action :enable
end

Attributes

Default

  • node['firewall-ex']['ipv4_forward'] - sets the ip_forward flag in sysctl.
  • node['firewall-ex']['ipv6_forward'] - sets the ipv6 forwarding rules in sysctl.
  • node['firewall-ex']['ipv6_enabled'] - apply rules to support IPv6

  • node['firewall-ex']['accept_redirects'] - sets the accept_redirects flags in sysctl.

  • node['firewall-ex']['send_redirects'] - sets the send_redirects flags in sysctl.

The following firewall iptables rules can also be set as an array of lines.

  • node['firewall-ex']['input_rules'] -
  • node['firewall-ex']['output_rules'] -
  • node['firewall-ex']['postrouting_rules'] -
  • node['firewall-ex']['forward_rules'] -
  • node['firewall-ex']['forward6_rules'] -

Those that are directly defined in the LWRP are appended to these lists which are empty by default.

Recipes

default

Enables usage of the LWRP firewall_ex

License & Authors

Copyright 2014, Nephila Graphic

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.

Dependent cookbooks

firewall >= 0.0.0

Contingent cookbooks

There are no cookbooks that are contingent upon this one.

Collaborator Number Metric
            

0.1.1 failed this metric

Failure: Cookbook has 0 collaborators. A cookbook must have at least 2 collaborators to pass this metric.

Contributing File Metric
            

0.1.1 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file

Foodcritic Metric
            

0.1.1 failed this metric

FC059: LWRP provider does not declare use_inline_resources: firewall-ex/providers/default.rb:1
FC064: Ensure issues_url is set in metadata: firewall-ex/metadata.rb:1
FC065: Ensure source_url is set in metadata: firewall-ex/metadata.rb:1
FC066: Ensure chef_version is set in metadata: firewall-ex/metadata.rb:1
FC069: Ensure standardized license defined in metadata: firewall-ex/metadata.rb:1
FC074: LWRP should use DSL to define resource's default action: firewall-ex/resources/default.rb:1
Run with Foodcritic Version 12.2.1 with tags metadata,correctness ~FC031 ~FC045 and failure tags any

License Metric
            

0.1.1 passed this metric

No Binaries Metric
            

0.1.1 passed this metric

Publish Metric
            

0.1.1 passed this metric

Supported Platforms Metric
            

0.1.1 passed this metric

Testing File Metric
            

0.1.1 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file

Version Tag Metric
            

0.1.1 passed this metric