cookbook 'firewall-ex', '~> 0.1.1'
firewall-ex (2) Versions 0.1.1 Follow0
Installs/Configures extended networking
cookbook 'firewall-ex', '~> 0.1.1', :supermarket
knife supermarket install firewall-ex
knife supermarket download firewall-ex
firewall-ex cookbook
Simple networking LWRP for Debian/Ubuntu nodes.
Extends 'firewall' to incorporate after, before, and sysctl rules as part of the firewall configuration.
Includes also guards for OpenVZ containers.
Tested on
- Ubuntu 12.04
- Ubuntu 14.04
- Debian 7
Requirements
Depends on the firewall cookbook.
Usage
Including the default recipe will allow access to the LWRP along with install the base 'firewall::default' recipe. Just use in place of the normal firewall LWRP.
firewall_ex 'net' do send_redirects false postrouting '-s 10.10.10.10 -j MASQUERADE' forward '-m state --state RELATED,ESTABLISHED -j ACCEPT' forward '-j ACCEPT' action :enable end
Attributes
Default
- 
node['firewall-ex']['ipv4_forward']- sets the ip_forward flag in sysctl.
- 
node['firewall-ex']['ipv6_forward']- sets the ipv6 forwarding rules in sysctl.
- node['firewall-ex']['ipv6_enabled']- apply rules to support IPv6
- node['firewall-ex']['accept_redirects']- sets the accept_redirects flags in sysctl.
- node['firewall-ex']['send_redirects']- sets the send_redirects flags in sysctl.
The following firewall iptables rules can also be set as an array of lines.
- 
node['firewall-ex']['input_rules']-
- 
node['firewall-ex']['output_rules']-
- 
node['firewall-ex']['postrouting_rules']-
- 
node['firewall-ex']['forward_rules']-
- 
node['firewall-ex']['forward6_rules']-
Those that are directly defined in the LWRP are appended to these lists which are empty by default.
Recipes
default
Enables usage of the LWRP firewall_ex
License & Authors
- Author:: Ted Chen (ted@nephilagraphic.com)
Copyright 2014, Nephila Graphic
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
    http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
Dependent cookbooks
| firewall >= 0.0.0 | 
Contingent cookbooks
There are no cookbooks that are contingent upon this one.
Collaborator Number Metric
        
            0.1.1 failed this metric
            Failure: Cookbook has 0 collaborators. A cookbook must have at least 2 collaborators to pass this metric.
        
      Contributing File Metric
        
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file
        
      Foodcritic Metric
        
            0.1.1 failed this metric
            FC064: Ensure issues_url is set in metadata: firewall-ex/metadata.rb:1
FC065: Ensure source_url is set in metadata: firewall-ex/metadata.rb:1
FC066: Ensure chef_version is set in metadata: firewall-ex/metadata.rb:1
FC069: Ensure standardized license defined in metadata: firewall-ex/metadata.rb:1
FC074: LWRP should use DSL to define resource's default action: firewall-ex/resources/default.rb:1
FC085: Resource using new_resource.updated_by_last_action to converge resource: firewall-ex/providers/default.rb:21
FC085: Resource using new_resource.updated_by_last_action to converge resource: firewall-ex/providers/default.rb:27
Run with Foodcritic Version 16.3.0 with tags metadata,correctness ~FC031 ~FC045 and failure tags any
        
      No Binaries Metric
        
            0.1.1 passed this metric
        
      Testing File Metric
        
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
        
      Version Tag Metric
        
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
        
  
0.1.1 failed this metric
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file
Foodcritic Metric
        
            0.1.1 failed this metric
            FC064: Ensure issues_url is set in metadata: firewall-ex/metadata.rb:1
FC065: Ensure source_url is set in metadata: firewall-ex/metadata.rb:1
FC066: Ensure chef_version is set in metadata: firewall-ex/metadata.rb:1
FC069: Ensure standardized license defined in metadata: firewall-ex/metadata.rb:1
FC074: LWRP should use DSL to define resource's default action: firewall-ex/resources/default.rb:1
FC085: Resource using new_resource.updated_by_last_action to converge resource: firewall-ex/providers/default.rb:21
FC085: Resource using new_resource.updated_by_last_action to converge resource: firewall-ex/providers/default.rb:27
Run with Foodcritic Version 16.3.0 with tags metadata,correctness ~FC031 ~FC045 and failure tags any
        
      No Binaries Metric
        
            0.1.1 passed this metric
        
      Testing File Metric
        
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
        
      Version Tag Metric
        
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
        
  
0.1.1 failed this metric
FC065: Ensure source_url is set in metadata: firewall-ex/metadata.rb:1
FC066: Ensure chef_version is set in metadata: firewall-ex/metadata.rb:1
FC069: Ensure standardized license defined in metadata: firewall-ex/metadata.rb:1
FC074: LWRP should use DSL to define resource's default action: firewall-ex/resources/default.rb:1
FC085: Resource using new_resource.updated_by_last_action to converge resource: firewall-ex/providers/default.rb:21
FC085: Resource using new_resource.updated_by_last_action to converge resource: firewall-ex/providers/default.rb:27
Run with Foodcritic Version 16.3.0 with tags metadata,correctness ~FC031 ~FC045 and failure tags any
            0.1.1 passed this metric
        
      Testing File Metric
        
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
        
      Version Tag Metric
        
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
        
  
0.1.1 failed this metric
            0.1.1 failed this metric
            Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number