other/Puppet: modules/firewall/CHANGELOG.md annotate

annotate modules/firewall/CHANGELOG.md @ 398:66c406eec60d

Update and fix firewall for Ubuntu * Use later version of module (not latest because our Puppet isn't supported) * Change how we define "ensure" because Ubuntu doesn't use IPv6 methods

author	IBBoard <dev@ibboard.co.uk>
date	Wed, 20 Apr 2022 19:04:13 +0100
parents	11d940c9014e
children	adf6fe9bbc17

rev	line source
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	1 # Change log
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	2
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	3 All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/) and this project adheres to [Semantic Versioning](http://semver.org).
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	4
398 66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	5 ## [v2.8.1](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.8.1) (2021-02-08)
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	6
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	7 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.8.0...v2.8.1)
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	8
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	9 ### Fixed
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	10
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	11 - \[MODULES-10907\] Do not remove spaces from hex string with ! [\#967](https://github.com/puppetlabs/puppetlabs-firewall/pull/967) ([adrianiurca](https://github.com/adrianiurca))
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	12
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	13 ## [v2.8.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.8.0) (2020-12-14)
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	14
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	15 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.7.0...v2.8.0)
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	16
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	17 ### Added
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	18
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	19 - pdksync - $feat$ - Add support for Puppet 7 [\#959](https://github.com/puppetlabs/puppetlabs-firewall/pull/959) ([daianamezdrea](https://github.com/daianamezdrea))
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	20 - $IAC-966$ - MODULES-10522: Add support for the --condition parameter [\#941](https://github.com/puppetlabs/puppetlabs-firewall/pull/941) ([adrianiurca](https://github.com/adrianiurca))
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	21
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	22 ### Fixed
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	23
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	24 - Restore copyright names [\#951](https://github.com/puppetlabs/puppetlabs-firewall/pull/951) ([hunner](https://github.com/hunner))
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	25
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	26 ## [v2.7.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.7.0) (2020-10-15)
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	27
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	28 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.6.0...v2.7.0)
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	29
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	30 ### Added
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	31
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	32 - $IAC-1190$ add `ignore\_foreign` when purging firewallchains [\#948](https://github.com/puppetlabs/puppetlabs-firewall/pull/948) ([DavidS](https://github.com/DavidS))
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	33
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	34 ## [v2.6.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.6.0) (2020-10-01)
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	35
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	36 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.5.0...v2.6.0)
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	37
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	38 ### Added
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	39
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	40 - pdksync - $IAC-973$ - Update travis/appveyor to run on new default branch main [\#933](https://github.com/puppetlabs/puppetlabs-firewall/pull/933) ([david22swan](https://github.com/david22swan))
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	41
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	42 ### Fixed
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	43
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	44 - Fix extra quotes in firewall string matching [\#944](https://github.com/puppetlabs/puppetlabs-firewall/pull/944) ([IBBoard](https://github.com/IBBoard))
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	45 - $IAC-987$ - Removal of inappropriate terminology [\#942](https://github.com/puppetlabs/puppetlabs-firewall/pull/942) ([david22swan](https://github.com/david22swan))
66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	46
348 11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	47 ## [v2.5.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.5.0) (2020-07-28)
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	48
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	49 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.4.0...v2.5.0)
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	50
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	51 ### Added
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	52
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	53 - Add acceptance and unit test [\#931](https://github.com/puppetlabs/puppetlabs-firewall/pull/931) ([adrianiurca](https://github.com/adrianiurca))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	54 - \[IAC-899\] - Add acceptance test for string\_hex parameter [\#930](https://github.com/puppetlabs/puppetlabs-firewall/pull/930) ([adrianiurca](https://github.com/adrianiurca))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	55 - Add support for NFLOG options to ip6tables [\#921](https://github.com/puppetlabs/puppetlabs-firewall/pull/921) ([frh](https://github.com/frh))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	56
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	57 ## [v2.4.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.4.0) (2020-05-13)
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	58
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	59 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.3.0...v2.4.0)
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	60
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	61 ### Added
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	62
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	63 - Add support for u32 module in iptables [\#917](https://github.com/puppetlabs/puppetlabs-firewall/pull/917) ([sanfrancrisko](https://github.com/sanfrancrisko))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	64 - Add support for cgroup arg [\#916](https://github.com/puppetlabs/puppetlabs-firewall/pull/916) ([akerl-unpriv](https://github.com/akerl-unpriv))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	65 - Extend LOG options [\#914](https://github.com/puppetlabs/puppetlabs-firewall/pull/914) ([martialblog](https://github.com/martialblog))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	66
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	67 ### Fixed
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	68
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	69 - $MODULES-8543$ Remove nftables' backend warning from iptables\_save outtput [\#911](https://github.com/puppetlabs/puppetlabs-firewall/pull/911) ([NITEMAN](https://github.com/NITEMAN))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	70
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	71 ## [v2.3.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.3.0) (2020-03-26)
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	72
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	73 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.2.0...v2.3.0)
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	74
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	75 ### Added
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	76
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	77 - Add iptables --hex-string support to firewall resource [\#907](https://github.com/puppetlabs/puppetlabs-firewall/pull/907) ([alexconrey](https://github.com/alexconrey))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	78 - Add random\_fully and rpfilter support [\#892](https://github.com/puppetlabs/puppetlabs-firewall/pull/892) ([treydock](https://github.com/treydock))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	79 - $MODULES-7800$ Add the ability to specify iptables connection tracking helpers. [\#890](https://github.com/puppetlabs/puppetlabs-firewall/pull/890) ([jimmyt86](https://github.com/jimmyt86))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	80 - Support conntrack module [\#872](https://github.com/puppetlabs/puppetlabs-firewall/pull/872) ([haught](https://github.com/haught))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	81
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	82 ### Fixed
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	83
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	84 - $maint$ Use fact.flush only when available [\#906](https://github.com/puppetlabs/puppetlabs-firewall/pull/906) ([Filipovici-Andrei](https://github.com/Filipovici-Andrei))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	85 - Merge and remove duplicate README file, lint code snippets [\#878](https://github.com/puppetlabs/puppetlabs-firewall/pull/878) ([runejuhl](https://github.com/runejuhl))
11d940c9014e Update Firewall module to try and fix quoting string issue IBBoard <dev@ibboard.co.uk> parents: 275 diff changeset	86
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	87 ## [v2.2.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.2.0) (2019-12-09)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	88
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	89 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.1.0...v2.2.0)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	90
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	91 ### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	92
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	93 - Add support for Debian Unstable [\#876](https://github.com/puppetlabs/puppetlabs-firewall/pull/876) ([martialblog](https://github.com/martialblog))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	94 - $FM-8673$ - Support added for CentOS 8 [\#873](https://github.com/puppetlabs/puppetlabs-firewall/pull/873) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	95 - FM-8400 - add debian10 support [\#862](https://github.com/puppetlabs/puppetlabs-firewall/pull/862) ([lionce](https://github.com/lionce))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	96 - FM-8219 - Convert to litmus [\#855](https://github.com/puppetlabs/puppetlabs-firewall/pull/855) ([lionce](https://github.com/lionce))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	97
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	98 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	99
398 66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	100 - $MODULES-10358$ - Clarification added to Boolean validation checks [\#886](https://github.com/puppetlabs/puppetlabs-firewall/pull/886) ([david22swan](https://github.com/david22swan))
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	101 - Change - Avoid puppet failures on windows nodes [\#874](https://github.com/puppetlabs/puppetlabs-firewall/pull/874) ([blackknight36](https://github.com/blackknight36))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	102 - Fix parsing iptables rules with hyphen in comments [\#861](https://github.com/puppetlabs/puppetlabs-firewall/pull/861) ([Hexta](https://github.com/Hexta))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	103
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	104 ## [v2.1.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.1.0) (2019-09-24)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	105
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	106 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/v2.0.0...v2.1.0)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	107
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	108 ### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	109
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	110 - $MODULES-6136$ Add zone property of CT target. [\#852](https://github.com/puppetlabs/puppetlabs-firewall/pull/852) ([rwf14f](https://github.com/rwf14f))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	111 - $FM-8025$ Add RedHat 8 support [\#847](https://github.com/puppetlabs/puppetlabs-firewall/pull/847) ([eimlav](https://github.com/eimlav))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	112
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	113 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	114
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	115 - MODULES-9801 - fix negated physdev [\#858](https://github.com/puppetlabs/puppetlabs-firewall/pull/858) ([lionce](https://github.com/lionce))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	116
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	117 ## [v2.0.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/v2.0.0) (2019-05-14)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	118
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	119 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/1.15.3...v2.0.0)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	120
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	121 ### Changed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	122
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	123 - pdksync - $MODULES-8444$ - Raise lower Puppet bound [\#841](https://github.com/puppetlabs/puppetlabs-firewall/pull/841) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	124
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	125 ### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	126
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	127 - $FM-7903$ - Implement Puppet Strings [\#838](https://github.com/puppetlabs/puppetlabs-firewall/pull/838) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	128
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	129 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	130
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	131 - $MODULES-8736$ IPtables support on RHEL8 [\#824](https://github.com/puppetlabs/puppetlabs-firewall/pull/824) ([EmilienM](https://github.com/EmilienM))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	132
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	133 ## [1.15.3](https://github.com/puppetlabs/puppetlabs-firewall/tree/1.15.3) (2019-04-04)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	134
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	135 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/1.15.2...1.15.3)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	136
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	137 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	138
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	139 - $MODULES-8855$ Move ipvs test to exception spec [\#834](https://github.com/puppetlabs/puppetlabs-firewall/pull/834) ([eimlav](https://github.com/eimlav))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	140 - $MODULES-8842$ Fix ipvs not idempotent [\#833](https://github.com/puppetlabs/puppetlabs-firewall/pull/833) ([eimlav](https://github.com/eimlav))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	141
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	142 ## [1.15.2](https://github.com/puppetlabs/puppetlabs-firewall/tree/1.15.2) (2019-03-26)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	143
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	144 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/1.15.1...1.15.2)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	145
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	146 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	147
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	148 - $MODULES-8615$ Fix rules with ipvs not parsing [\#828](https://github.com/puppetlabs/puppetlabs-firewall/pull/828) ([eimlav](https://github.com/eimlav))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	149 - $MODULES-7333$ - Change hashing method from MD5 to SHA256 [\#827](https://github.com/puppetlabs/puppetlabs-firewall/pull/827) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	150 - $MODULES-6547$ Fix existing rules with --dport not parsing [\#826](https://github.com/puppetlabs/puppetlabs-firewall/pull/826) ([eimlav](https://github.com/eimlav))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	151 - $MODULES-8648$ - Fix for failures on SLES 11 [\#816](https://github.com/puppetlabs/puppetlabs-firewall/pull/816) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	152 - $MODULES-8584$ Handle multiple escaped quotes in comments properly [\#815](https://github.com/puppetlabs/puppetlabs-firewall/pull/815) ([mateusz-gozdek-sociomantic](https://github.com/mateusz-gozdek-sociomantic))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	153 - External control for iptables-persistent [\#795](https://github.com/puppetlabs/puppetlabs-firewall/pull/795) ([identw](https://github.com/identw))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	154
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	155 ## [1.15.1](https://github.com/puppetlabs/puppetlabs-firewall/tree/1.15.1) (2019-02-01)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	156
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	157 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/1.15.0...1.15.1)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	158
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	159 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	160
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	161 - $DOC-3056$ Remove mention of rules ordering [\#809](https://github.com/puppetlabs/puppetlabs-firewall/pull/809) ([clairecadman](https://github.com/clairecadman))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	162 - $FM-7712$ - Remove Gentoo 1.0 testing/support for Firewall module [\#808](https://github.com/puppetlabs/puppetlabs-firewall/pull/808) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	163 - $MODULES-8360$ Fix IPv6 bug relating to Bugzilla 1015 [\#804](https://github.com/puppetlabs/puppetlabs-firewall/pull/804) ([alexharv074](https://github.com/alexharv074))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	164
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	165 ## [1.15.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/1.15.0) (2019-01-18)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	166
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	167 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/1.14.0...1.15.0)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	168
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	169 ### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	170
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	171 - $MODULES-8143$ - Add SLES 15 support [\#798](https://github.com/puppetlabs/puppetlabs-firewall/pull/798) ([eimlav](https://github.com/eimlav))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	172 - Add nftables wrapper support for RHEL8 [\#794](https://github.com/puppetlabs/puppetlabs-firewall/pull/794) ([mwhahaha](https://github.com/mwhahaha))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	173 - Changed regex for iniface and outiface to allow '@' in interface names [\#791](https://github.com/puppetlabs/puppetlabs-firewall/pull/791) ([GeorgeCox](https://github.com/GeorgeCox))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	174 - $MODULES-8214$ Handle src\_type and dst\_type as array [\#790](https://github.com/puppetlabs/puppetlabs-firewall/pull/790) ([mateusz-gozdek-sociomantic](https://github.com/mateusz-gozdek-sociomantic))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	175 - $MODULES-7990$ Merge multiple comments into one while parsing rules [\#789](https://github.com/puppetlabs/puppetlabs-firewall/pull/789) ([mateusz-gozdek-sociomantic](https://github.com/mateusz-gozdek-sociomantic))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	176 - add -g flag handling in ip6tables.rb provider [\#788](https://github.com/puppetlabs/puppetlabs-firewall/pull/788) ([cestith](https://github.com/cestith))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	177 - $MODULES-7681$ Add support for bytecode property [\#771](https://github.com/puppetlabs/puppetlabs-firewall/pull/771) ([baurmatt](https://github.com/baurmatt))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	178
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	179 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	180
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	181 - pdksync - $FM-7655$ Fix rubygems-update for ruby \< 2.3 [\#801](https://github.com/puppetlabs/puppetlabs-firewall/pull/801) ([tphoney](https://github.com/tphoney))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	182 - $MODULES-6340$ - Address failure when name begins with 9XXX [\#796](https://github.com/puppetlabs/puppetlabs-firewall/pull/796) ([eimlav](https://github.com/eimlav))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	183 - Amazon linux 2 changed its major version to 2 with the last update... [\#793](https://github.com/puppetlabs/puppetlabs-firewall/pull/793) ([erik-frontify](https://github.com/erik-frontify))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	184
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	185 ## [1.14.0](https://github.com/puppetlabs/puppetlabs-firewall/tree/1.14.0) (2018-09-27)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	186
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	187 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/1.13.0...1.14.0)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	188
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	189 ### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	190
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	191 - pdksync - $MODULES-6805$ metadata.json shows support for puppet 6 [\#782](https://github.com/puppetlabs/puppetlabs-firewall/pull/782) ([tphoney](https://github.com/tphoney))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	192 - $FM-7399$ - Prepare for changelog generator [\#780](https://github.com/puppetlabs/puppetlabs-firewall/pull/780) ([pmcmaw](https://github.com/pmcmaw))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	193
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	194 ## 1.13.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	195
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	196 [Full Changelog](https://github.com/puppetlabs/puppetlabs-firewall/compare/1.12.0...1.13.0)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	197
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	198 ### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	199
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	200 - pdksync - $MODULES-7705$ - Bumping stdlib dependency from \< 5.0.0 to \< 6.0.0 [\#775](https://github.com/puppetlabs/puppetlabs-firewall/pull/775) ([pmcmaw](https://github.com/pmcmaw))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	201 - Add support for Amazon Linux 2 [\#768](https://github.com/puppetlabs/puppetlabs-firewall/pull/768) ([erik-frontify](https://github.com/erik-frontify))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	202 - $FM-7232$ - Update firewall to support Ubuntu 18.04 [\#767](https://github.com/puppetlabs/puppetlabs-firewall/pull/767) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	203 - \[FM-7044\] Addition of Debian 9 support to firewall [\#765](https://github.com/puppetlabs/puppetlabs-firewall/pull/765) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	204 - \[FM-6961\] Removal of unsupported OS from firewall [\#764](https://github.com/puppetlabs/puppetlabs-firewall/pull/764) ([david22swan](https://github.com/david22swan))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	205
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	206 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	207
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	208 - $MODULES-7627$ - Update README Limitations section [\#769](https://github.com/puppetlabs/puppetlabs-firewall/pull/769) ([eimlav](https://github.com/eimlav))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	209 - Corrections to readme [\#766](https://github.com/puppetlabs/puppetlabs-firewall/pull/766) ([alexharv074](https://github.com/alexharv074))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	210 - $MODULES-6129$ negated option with address mask bugfix [\#756](https://github.com/puppetlabs/puppetlabs-firewall/pull/756) ([mirekys](https://github.com/mirekys))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	211 - $MODULES-2119$ iptables delete -p all exception [\#749](https://github.com/puppetlabs/puppetlabs-firewall/pull/749) ([mikkergimenez](https://github.com/mikkergimenez))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	212
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	213 ## 1.12.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	214 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	215 This release uses the PDK convert functionality which in return makes the module PDK compliant. It also includes a roll up of maintenance changes.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	216
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	217 #### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	218 - PDK convert firewall ([MODULES-6455](https://tickets.puppet.com/browse/MODULES-6455)).
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	219 - Modulesync updates.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	220
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	221 ### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	222 - Set correct `seluser` for CentOS/RHEL 5.x ([MODULES-6092](https://tickets.puppet.com/browse/MODULES-6092)).
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	223 - Fix error parsing rules with dashes in the chain name ([MODULES-6261](https://tickets.puppet.com/browse/MODULES-6261)).
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	224 - Changes to address additional Rubocop failures.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	225 - (maint) Addressing puppet-lint doc warnings.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	226
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	227 ## Supported Release 1.11.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	228 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	229 This release is to implement Rubocop changes within the module.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	230
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	231 #### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	232 - Rubocop has been implemented in the module.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	233
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	234 ### Changed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	235 - Module sync was updated.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	236 - Unparsable rules are now skipped with a warning.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	237
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	238 ## Supported Release 1.10.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	239 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	240 This is a clean release prior to the module being run through rubocop.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	241
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	242 #### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	243 - Hashlimit module added.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	244 - Firewall multi notes added.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	245 - Gidd lookup now added.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	246 - Simple sanity check added to hash parser rule.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	247
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	248 ### Changed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	249 - Version requirement has been updated.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	250 - An array is no lnger accepted for icmp types.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	251 - UNTRACKED is now considered to be a valid state.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	252 - Modulesync updates.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	253 - ip6tables can be disabled.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	254 - Readme format has been fixed.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	255 - Fixes made to accomodate Puppet lint.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	256 - Fix to regex i 'connlimit_spec.rb' and 'firewall_spec.rb'.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	257 - General test fixes.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	258 - Negated match sets know properly dealt with.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	259 - Correct IP version for hostname resolution now chosen.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	260 - Unmanaged rule regex regarding iptable has been fixed.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	261
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	262 ### Removed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	263 - Ubuntu 10.04 and 12.04 removed.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	264
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	265 ## Supported Release 1.9.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	266 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	267 This release includes several bugfixes and NFLOG support.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	268
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	269 #### Added
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	270 - Support for NFLOG including the `NFLOG` jump target and four commandline options ([FM-4896](https://tickets.puppetlabs.com/browse/FM-4896))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	271 - Support for the geoip module ([MODULES-4279](https://tickets.puppetlabs.com/browse/MODULES-4279))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	272 - Management of the ebtables package
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	273
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	274 #### Fixed
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	275 - iptables parser fails with "Invalid address from IPAddr.new: -m" ([MODULES-4234](https://tickets.puppetlabs.com/browse/MODULES-4234))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	276 - selinux context for iptables configuration
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	277 - Replace Puppet.version.to_f with Puppet::Util::Package.versioncmp ( [MODULES-4528](https://tickets.puppetlabs.com/browse/MODULES-4528))
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	278
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	279 ## Supported Release 1.8.2
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	280 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	281 This release includes numerous features and bugfixes, See below.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	282
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	283 #### Bugfixes
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	284 - Fixing issue with double quotes being removed when part of the rule comment
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	285 - Add the --wait flag to the insert/update/delete iptables actions to prevent failures from occuring when iptables is running outside of puppet for iptables >= 1.4.20
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	286 - Fix iptables_version and ip6tables_version facts not returning the version
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	287
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	288 #### Features
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	289 - Support for multiple IP sets in a single rule
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	290 - Implement queue_bypass and queue_num parameters for NFQUEUE jump target
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	291 - Tighten SELinux permissions on persistent files
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	292 - RHEL7 SELinux support for puppet 3
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	293 - Manage ip6tables service for Redhat Family
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	294
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	295 ## Supported Release 1.8.1
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	296 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	297 This release documents an important issue with mcollective that may impact users of the firewall module. Workarounds are suggested as part of this advisory until mcollective can be patched.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	298
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	299 #### Bugfixes
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	300 - Add mcollective rule-reversal known limitation
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	301
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	302 ## Supported Release 1.8.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	303 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	304
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	305 This release includes numerous features, bugfixes and other improvements including better handling when trying to delete already absent rules.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	306
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	307 #### Features
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	308 - Added new 'pkg_ensure' parameter to allow the updating of the iptables package.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	309 - Added new 'log_uid' property.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	310 - Added 'sctp' to the 'proto' property.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	311 - Added support for IPv6 NAT in Linux kernels >= 3.7.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	312 - Added support for the security table.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	313
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	314 #### Bugfixes
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	315 - (MODULES-2783) Replaced hardcoded iptables service references with $service_name variable.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	316 - (MODULES-1341) Recover when deleting absent rules.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	317 - (MODULES-3032) Facter flush is called to clear Facter cache get up to date value for ':iptables_persistent_version'.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	318 - (MODULES-2159) Fixed idempotency issue when using connlimit.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	319 - Fixed the handling of chain names that contain '-f'.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	320
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	321 #### Improvements
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	322 - Numerous unit and acceptance test improvements.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	323 - Improved handling/use of the '$::iptables_persistent_version' custom fact.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	324 - Better handling of operating systems that use SELinux.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	325
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	326 ## Supported Release 1.7.2
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	327 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	328
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	329 Small release for support of newer PE versions. This increments the version of PE in the metadata.json file.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	330
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	331 ## 2015-08-25 - Supported Release 1.7.1
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	332 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	333
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	334 This is a bugfix release to deprecate the port parameter. Using the unspecific 'port' parameter can lead to firewall rules that are unexpectedly too lax. It is recommended to always use the specific dport and sport parameters to avoid this ambiguity.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	335
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	336 #### Bugfixes
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	337 - Deprecate the port parameter
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	338
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	339 ## 2015-07-28 - Supported Release 1.7.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	340 ### Summary
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	341
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	342 This release includes numerous features, bugfixes and other improvements including Puppet 4 & PE 2015.2 support as well as ClusterIP and DSCP jump target support.
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	343
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	344 #### Features
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	345 - Puppet 4 and PE 2015.2 official support
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	346 - ClusterIP jump target (including options) now supported
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	347 - DSCP jump target (including options) now supported
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	348 - SLES 10 now compatible (but not supported)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	349
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	350 #### Bugfixes
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	351 - (MODULES-1967) Parse escape sequences from iptables
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	352 - (MODULES-1592) Allow src_type and dst_type prefixed with '!' to pass validation
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	353 - (MODULES-2186) - iptables rules with -A in comment now supported
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	354 - (MODULES-1976) Revise rule name validation for ruby 1.9
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	355 - Fix installation hang on Debian Jessie
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	356 - Fix for physdev idempotency on EL5
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	357
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	358 #### Improvements
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	359 - Documentation improvements
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	360 - Enforce the seluser on selinux systems
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	361 - All the relevent services are now autorequired by the firewall and firewallchain types
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	362 - Replace Facter.fact().value() calls with Facter.value() to support Facter 3
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	363
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	364 ## 2015-05-19 - Supported Release 1.6.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	365 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	366
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	367 This release includes support for TEE, MSS, the time ipt module, Debian 8 support, and a number of test fixes and other improvements.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	368
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	369 #### Features
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	370 - Add TEE support
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	371 - Add MSS support (including clamp-mss-to-pmtu support)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	372 - Add support for the time ipt module (-m time)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	373 - Add support for Debian 8
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	374 - Add support for ICMPv6 types 'neighbour-{solicitation,advertisement}'
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	375 - Add support for ICMPv6 type 'too-big'
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	376 - Add support for new 'match_mark' property
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	377 - Added 'ipv4' and 'ipv6' options to 'proto' property
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	378
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	379 #### Bugfixes
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	380 - Fix for Systemd-based OSes where systemd needs restarted before being able to pick up new services (MODULES-1984)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	381 - Arch Linux package management fix
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	382
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	383 ## 2015-03-31 - Supported Release 1.5.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	384 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	385
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	386 This release includes physdev_is_bridged support, checksum_fill support, basic Gentoo compatibility, and a number of test fixes and improvements.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	387
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	388 #### Features
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	389 - Add `physdev_is_bridged` support
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	390 - Add `checksum_fill` support
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	391 - Add basic Gentoo compatibility (unsupported)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	392
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	393 #### Bugfixes
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	394 - Implementation for resource map munging to allow a single ipt module to be used multiple times in a single rule on older versions of iptables (MODULES-1808)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	395 - Test fixes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	396
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	397 ## 2015-01-27 - Supported Release 1.4.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	398 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	399
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	400 This release includes physdev support, the ability to look up usernames from uuid, and a number of bugfixes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	401
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	402 #### Features
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	403 - Add `netmap` feature
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	404 - Add `physdev` support
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	405 - Add ability to look up username from uuid (MODULES-753, MODULES-1688)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	406
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	407 #### Bugfixes
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	408 - Sync iptables/ip6tables providers (MODULES-1612)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	409 - Fix package names for Amazon and Ubuntu 14.10 (MODULES-1029)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	410 - Fix overly aggressive gsub when `ensure => absent` (MODULES-1453)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	411 - Unable to parse `-m (tcp\|udp)` rules (MODULES-1552)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	412 - Fix ip6tables provider when `iptables-ipv6` package isn't installed for EL6 (MODULES-633)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	413 - Test fixes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	414
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	415 ## 2014-12-16 - Supported Release 1.3.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	416 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	417
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	418 This release includes a number of bugfixes and features, including fixing `tcp_flags` support, and added support for interface aliases, negation for iniface and outiface, and extra configurability for packages and service names.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	419
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	420 #### Features
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	421 - Add support for interface aliases (eth0:0) (MODULES-1469)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	422 - Add negation for iniface, outiface (MODULES-1470)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	423 - Make package and service names configurable (MODULES-1309)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	424
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	425 #### Bugfixes
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	426 - Fix test regexes for EL5 (MODULES-1565)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	427 - Fix `tcp_flags` support for ip6tables (MODULES-556)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	428 - Don't arbitrarily limit `set_mark` for certain chains
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	429
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	430 ## 2014-11-04 - Supported Release 1.2.0
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	431 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	432
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	433 This release has a number of new features and bugfixes, including rule inversion, future parser support, improved EL7 support, and the ability to purge ip6tables rules.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	434
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	435 #### Features
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	436 - Documentation updates!
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	437 - Test updates!
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	438 - Add ipset support
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	439 - Enable rule inversion
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	440 - Future parser support
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	441 - Improved support for EL7
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	442 - Support netfilter-persistent
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	443 - Add support for statistics module
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	444 - Add support for mac address source rules
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	445 - Add cbt protocol
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	446
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	447 #### Bugfixes
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	448 - Incorrect use of `source => :iptables` in the ip6tables provider was making it impossible to purge ip6tables rules (MODULES-41)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	449 - Don't require `toports` when `jump => 'REDIRECT'` (MODULES-1086)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	450 - Don't limit which chains iniface and outiface parameters can be used in
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	451 - Don't fail on rules added with ipsec/strongswan (MODULES-796)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	452
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	453 ## 2014-07-08 - Supported Release 1.1.3
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	454 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	455 This is a supported release with test coverage enhancements.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	456
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	457 #### Bugfixes
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	458 - Confine to supported kernels
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	459
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	460 ## 2014-06-04 - Release 1.1.2
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	461 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	462
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	463 This is a release of the code previously released as 1.1.1, with updated metadata.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	464
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	465 ## 2014-05-16 Release 1.1.1
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	466 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	467
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	468 This release reverts the alphabetical ordering of 1.1.0. We found this caused
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	469 a regression in the Openstack modules so in the interest of safety we have
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	470 removed this for now.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	471
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	472 ## 2014-05-13 Release 1.1.0
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	473 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	474
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	475 This release has a significant change from previous releases; we now apply the
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	476 firewall resources alphabetically by default, removing the need to create pre
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	477 and post classes just to enforce ordering. It only effects default ordering
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	478 and further information can be found in the README about this. Please test
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	479 this in development before rolling into production out of an abundance of
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	480 caution.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	481
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	482 We've also added `mask` which is required for --recent in recent (no pun
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	483 intended) versions of iptables, as well as connlimit and connmark. This
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	484 release has been validated against Ubuntu 14.04 and RHEL7 and should be fully
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	485 working on those platforms.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	486
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	487 #### Features
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	488
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	489 - Apply firewall resources alphabetically.
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	490 - Add support for connlimit and connmark.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	491 - Add `mask` as a parameter. (Used exclusively with the recent parameter).
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	492
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	493 #### Bugfixes
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	494
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	495 - Add systemd support for RHEL7.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	496 - Replace &&'s with the correct and in manifests.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	497 - Fix tests on Trusty and RHEL7
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	498 - Fix for Fedora Rawhide.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	499 - Fix boolean flag tests.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	500 - Fix DNAT->SNAT typo in an error message.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	501
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	502 #### Known Bugs
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	503
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	504 * For Oracle, the `owner` and `socket` parameters require a workaround to function. Please see the Limitations section of the README.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	505
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	506
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	507 ## 2014-03-04 Supported Release 1.0.2
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	508 ### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	509
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	510 This is a supported release. This release removes a testing symlink that can
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	511 cause trouble on systems where /var is on a seperate filesystem from the
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	512 modulepath.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	513
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	514 #### Features
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	515 #### Bugfixes
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	516 #### Known Bugs
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	517
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	518 * For Oracle, the `owner` and `socket` parameters require a workaround to function. Please see the Limitations section of the README.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	519
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	520 ### Supported release - 2014-03-04 1.0.1
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	521
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	522 #### Summary
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	523
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	524 An important bugfix was made to the offset calculation for unmanaged rules
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	525 to handle rules with 9000+ in the name.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	526
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	527 #### Features
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	528
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	529 #### Bugfixes
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	530 - Offset calculations assumed unmanaged rules were numbered 9000+.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	531 - Gracefully fail to manage ip6tables on iptables 1.3.x
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	532
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	533 #### Known Bugs
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	534
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	535 * For Oracle, the `owner` and `socket` parameters require a workaround to function. Please see the Limitations section of the README.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	536
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	537 ---
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	538 ### 1.0.0 - 2014-02-11
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	539
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	540 No changes, just renumbering to 1.0.0.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	541
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	542 ---
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	543 ### 0.5.0 - 2014-02-10
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	544
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	545 ##### Summary:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	546 This is a bigger release that brings in "recent" connection limiting (think
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	547 "port knocking"), firewall chain purging on a per-chain/per-table basis, and
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	548 support for a few other use cases. This release also fixes a major bug which
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	549 could cause modifications to the wrong rules when unmanaged rules are present.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	550
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	551 ##### New Features:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	552 * Add "recent" limiting via parameters `rdest`, `reap`, `recent`, `rhitcount`,
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	553 `rname`, `rseconds`, `rsource`, and `rttl`
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	554 * Add negation support for source and destination
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	555 * Add per-chain/table purging support to `firewallchain`
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	556 * IPv4 specific
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	557 * Add random port forwarding support
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	558 * Add ipsec policy matching via `ipsec_dir` and `ipsec_policy`
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	559 * IPv6 specific
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	560 * Add support for hop limiting via `hop_limit` parameter
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	561 * Add fragmentation matchers via `ishasmorefrags`, `islastfrag`, and `isfirstfrag`
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	562 * Add support for conntrack stateful firewall matching via `ctstate`
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	563
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	564 ##### Bugfixes:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	565 - Boolean fixups allowing false values
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	566 - Better detection of unmanaged rules
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	567 - Fix multiport rule detection
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	568 - Fix sport/dport rule detection
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	569 - Make INPUT, OUTPUT, and FORWARD not autorequired for firewall chain filter
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	570 - Allow INPUT with the nat table
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	571 - Fix `src_range` & `dst_range` order detection
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	572 - Documentation clarifications
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	573 - Fixes to spec tests
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	574
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	575 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	576
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	577 ### 0.4.2 - 2013-09-10
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	578
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	579 Another attempt to fix the packaging issue. We think we understand exactly
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	580 what is failing and this should work properly for the first time.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	581
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	582 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	583
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	584 ### 0.4.1 - 2013-08-09
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	585
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	586 Bugfix release to fix a packaging issue that may have caused puppet module
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	587 install commands to fail.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	588
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	589 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	590
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	591 ### 0.4.0 - 2013-07-11
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	592
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	593 This release adds support for address type, src/dest ip ranges, and adds
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	594 additional testing and bugfixes.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	595
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	596 #### Features
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	597 * Add `src_type` and `dst_type` attributes (Nick Stenning)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	598 * Add `src_range` and `dst_range` attributes (Lei Zhang)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	599 * Add SL and SLC operatingsystems as supported (Steve Traylen)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	600
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	601 #### Bugfixes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	602 * Fix parser for bursts other than 5 (Chris Rutter)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	603 * Fix parser for -f in --comment (Georg Koester)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	604 * Add doc headers to class files (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	605 * Fix lint warnings/errors (Wolf Noble)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	606
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	607 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	608
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	609 ### 0.3.1 - 2013/6/10
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	610
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	611 This minor release provides some bugfixes and additional tests.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	612
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	613 #### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	614
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	615 * Update tests for rspec-system-puppet 2 (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	616 * Update rspec-system tests for rspec-system-puppet 1.5 (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	617 * Ensure all services have 'hasstatus => true' for Puppet 2.6 (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	618 * Accept pre-existing rule with invalid name (Joe Julian)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	619 * Swap log_prefix and log_level order to match the way it's saved (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	620 * Fix log test to replicate bug #182 (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	621 * Split argments while maintaining quoted strings (Joe Julian)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	622 * Add more log param tests (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	623 * Add extra tests for logging parameters (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	624 * Clarify OS support (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	625
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	626 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	627
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	628 ### 0.3.0 - 2013/4/25
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	629
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	630 This release introduces support for Arch Linux and extends support for Fedora 15 and up. There are also lots of bugs fixed and improved testing to prevent regressions.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	631
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	632 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	633
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	634 * Fix error reporting for insane hostnames (Tomas Doran)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	635 * Support systemd on Fedora 15 and up (Eduardo Gutierrez)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	636 * Move examples to docs (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	637 * Add support for Arch Linux platform (Ingmar Steen)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	638 * Add match rule for fragments (Georg Koester)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	639 * Fix boolean rules being recognized as changed (Georg Koester)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	640 * Same rules now get deleted (Anastasis Andronidis)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	641 * Socket params test (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	642 * Ensure parameter can disable firewall (Marc Tardif)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	643
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	644 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	645
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	646 ### 0.2.1 - 2012/3/13
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	647
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	648 This maintenance release introduces the new README layout, and fixes a bug with iptables_persistent_version.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	649
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	650 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	651
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	652 * (GH-139) Throw away STDERR from dpkg-query in Fact
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	653 * Update README to be consistent with module documentation template
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	654 * Fix failing spec tests due to dpkg change in iptables_persistent_version
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	655
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	656 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	657
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	658 ### 0.2.0 - 2012/3/3
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	659
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	660 This release introduces automatic persistence, removing the need for the previous manual dependency requirement for persistent the running rules to the OS persistence file.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	661
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	662 Previously you would have required the following in your site.pp (or some other global location):
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	663
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	664 # Always persist firewall rules
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	665 exec { 'persist-firewall':
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	666 command => $operatingsystem ? {
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	667 'debian' => '/sbin/iptables-save > /etc/iptables/rules.v4',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	668 /(RedHat\|CentOS)/ => '/sbin/iptables-save > /etc/sysconfig/iptables',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	669 },
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	670 refreshonly => true,
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	671 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	672 Firewall {
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	673 notify => Exec['persist-firewall'],
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	674 before => Class['my_fw::post'],
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	675 require => Class['my_fw::pre'],
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	676 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	677 Firewallchain {
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	678 notify => Exec['persist-firewall'],
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	679 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	680 resources { "firewall":
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	681 purge => true
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	682 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	683
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	684 You only need:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	685
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	686 class { 'firewall': }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	687 Firewall {
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	688 before => Class['my_fw::post'],
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	689 require => Class['my_fw::pre'],
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	690 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	691
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	692 To install pre-requisites and to create dependencies on your pre & post rules. Consult the README for more information.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	693
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	694 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	695
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	696 * Firewall class manifests (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	697 * Firewall and firewallchain persistence (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	698 * (GH-134) Autorequire iptables related packages (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	699 * Typo in #persist_iptables OS normalisation (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	700 * Tests for #persist_iptables (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	701 * (GH-129) Replace errant return in autoreq block (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	702
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	703 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	704
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	705 ### 0.1.1 - 2012/2/28
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	706
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	707 This release primarily fixes changing parameters in 3.x
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	708
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	709 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	710
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	711 * (GH-128) Change method_missing usage to define_method for 3.x compatibility
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	712 * Update travis.yml gem specifications to actually test 2.6
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	713 * Change source in Gemfile to use a specific URL for Ruby 2.0.0 compatibility
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	714
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	715 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	716
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	717 ### 0.1.0 - 2012/2/24
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	718
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	719 This release is somewhat belated, so no summary as there are far too many changes this time around. Hopefully we won't fall this far behind again :-).
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	720
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	721 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	722
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	723 * Add support for MARK target and set-mark property (Johan Huysmans)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	724 * Fix broken call to super for ruby-1.9.2 in munge (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	725 * simple fix of the error message for allowed values of the jump property (Daniel Black)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	726 * Adding OSPF(v3) protocol to puppetlabs-firewall (Arnoud Vermeer)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	727 * Display multi-value: port, sport, dport and state command seperated (Daniel Black)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	728 * Require jump=>LOG for log params (Daniel Black)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	729 * Reject and document icmp => "any" (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	730 * add firewallchain type and iptables_chain provider (Daniel Black)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	731 * Various fixes for firewallchain resource (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	732 * Modify firewallchain name to be chain:table:protocol (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	733 * Fix allvalidchain iteration (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	734 * Firewall autorequire Firewallchains (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	735 * Tests and docstring for chain autorequire (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	736 * Fix README so setup instructions actually work (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	737 * Support vlan interfaces (interface containing ".") (Johan Huysmans)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	738 * Add tests for VLAN support for iniface/outiface (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	739 * Add the table when deleting rules (Johan Huysmans)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	740 * Fix tests since we are now prefixing -t)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	741 * Changed 'jump' to 'action', commands to lower case (Jason Short)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	742 * Support interface names containing "+" (Simon Deziel)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	743 * Fix for when iptables-save spews out "FATAL" errors (Sharif Nassar)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	744 * Fix for incorrect limit command arguments for ip6tables provider (Michael Hsu)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	745 * Document Util::Firewall.host_to_ip (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	746 * Nullify addresses with zero prefixlen (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	747 * Add support for --tcp-flags (Thomas Vander Stichele)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	748 * Make tcp_flags support a feature (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	749 * OUTPUT is a valid chain for the mangle table (Adam Gibbins)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	750 * Enable travis-ci support (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	751 * Convert an existing test to CIDR (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	752 * Normalise iptables-save to CIDR (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	753 * be clearer about what distributions we support (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	754 * add gre protocol to list of acceptable protocols (Jason Hancock)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	755 * Added pkttype property (Ashley Penney)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	756 * Fix mark to not repeat rules with iptables 1.4.1+ (Sharif Nassar)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	757 * Stub iptables_version for now so tests run on non-Linux hosts (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	758 * Stub iptables facts for set_mark tests (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	759 * Update formatting of README to meet Puppet Labs best practices (Will Hopper)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	760 * Support for ICMP6 type code resolutions (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	761 * Insert order hash included chains from different tables (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	762 * rspec 2.11 compatibility (Jonathan Boyett)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	763 * Add missing class declaration in README (sfozz)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	764 * array_matching is contraindicated (Sharif Nassar)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	765 * Convert port Fixnum into strings (Sharif Nassar)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	766 * Update test framework to the modern age (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	767 * working with ip6tables support (wuwx)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	768 * Remove gemfile.lock and add to gitignore (William Van Hevelingen)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	769 * Update travis and gemfile to be like stdlib travis files (William Van Hevelingen)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	770 * Add support for -m socket option (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	771 * Add support for single --sport and --dport parsing (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	772 * Fix tests for Ruby 1.9.3 from 3e13bf3 (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	773 * Mock Resolv.getaddress in #host_to_ip (Dan Carley)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	774 * Update docs for source and dest - they are not arrays (Ken Barber)
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	775
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	776 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	777
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	778 ### 0.0.4 - 2011/12/05
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	779
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	780 This release adds two new parameters, 'uid' and 'gid'. As a part of the owner module, these params allow you to specify a uid, username, gid, or group got a match:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	781
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	782 firewall { '497 match uid':
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	783 port => '123',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	784 proto => 'mangle',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	785 chain => 'OUTPUT',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	786 action => 'drop'
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	787 uid => '123'
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	788 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	789
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	790 This release also adds value munging for the 'log_level', 'source', and 'destination' parameters. The 'source' and 'destination' now support hostnames:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	791
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	792 firewall { '498 accept from puppetlabs.com':
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	793 port => '123',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	794 proto => 'tcp',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	795 source => 'puppetlabs.com',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	796 action => 'accept'
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	797 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	798
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	799
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	800 The 'log_level' parameter now supports using log level names, such as 'warn', 'debug', and 'panic':
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	801
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	802 firewall { '499 logging':
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	803 port => '123',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	804 proto => 'udp',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	805 log_level => 'debug',
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	806 action => 'drop'
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	807 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	808
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	809 Additional changes include iptables and ip6tables version facts, general whitespace cleanup, and adding additional unit tests.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	810
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	811 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	812
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	813 * (#10957) add iptables_version and ip6tables_version facts
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	814 * (#11093) Improve log_level property so it converts names to numbers
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	815 * (#10723) Munge hostnames and IPs to IPs with CIDR
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	816 * (#10718) Add owner-match support
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	817 * (#10997) Add fixtures for ipencap
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	818 * (#11034) Whitespace cleanup
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	819 * (#10690) add port property support to ip6tables
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	820
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	821 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	822
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	823 ### 0.0.3 - 2011/11/12
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	824
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	825 This release introduces a new parameter 'port' which allows you to set both
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	826 source and destination ports for a match:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	827
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	828 firewall { "500 allow NTP requests":
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	829 port => "123",
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	830 proto => "udp",
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	831 action => "accept",
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	832 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	833
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	834 We also have the limit parameter finally working:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	835
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	836 firewall { "500 limit HTTP requests":
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	837 dport => 80,
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	838 proto => tcp,
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	839 limit => "60/sec",
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	840 burst => 30,
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	841 action => accept,
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	842 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	843
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	844 State ordering has been fixed now, and more characters are allowed in the
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	845 namevar:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	846
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	847 * Alphabetical
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	848 * Numbers
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	849 * Punctuation
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	850 * Whitespace
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	851
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	852 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	853
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	854 * (#10693) Ensure -m limit is added for iptables when using 'limit' param
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	855 * (#10690) Create new port property
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	856 * (#10700) allow additional characters in comment string
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	857 * (#9082) Sort iptables --state option values internally to keep it consistent across runs
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	858 * (#10324) Remove extraneous whitespace from iptables rule line in spec tests
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	859
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	860 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	861
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	862 ### 0.0.2 - 2011/10/26
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	863
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	864 This is largely a maintanence and cleanup release, but includes the ability to
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	865 specify ranges of ports in the sport/dport parameter:
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	866
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	867 firewall { "500 allow port range":
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	868 dport => ["3000-3030","5000-5050"],
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	869 sport => ["1024-65535"],
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	870 action => "accept",
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	871 }
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	872
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	873 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	874
398 66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	875 * (#10295) Work around bug #4248 whereby the puppet/util paths are not being loaded correctly on the puppet server
39 d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	876 * (#10002) Change to dport and sport to handle ranges, and fix handling of name to name to port
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	877 * (#10263) Fix tests on Puppet 2.6.x
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	878 * (#10163) Cleanup some of the inline documentation and README file to align with general forge usage
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	879
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	880 ---------------------------------------
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	881
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	882 ### 0.0.1 - 2011/10/18
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	883
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	884 Initial release.
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	885
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	886 ##### Changes
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	887
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	888 * (#9362) Create action property and perform transformation for accept, drop, reject value for iptables jump parameter
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	889 * (#10088) Provide a customised version of CONTRIBUTING.md
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	890 * (#10026) Re-arrange provider and type spec files to align with Puppet
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	891 * (#10026) Add aliases for test,specs,tests to Rakefile and provide -T as default
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	892 * (#9439) fix parsing and deleting existing rules
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	893 * (#9583) Fix provider detection for gentoo and unsupported linuxes for the iptables provider
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	894 * (#9576) Stub provider so it works properly outside of Linux
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	895 * (#9576) Align spec framework with Puppet core
d6f2a0ee45c0 Add "Firewall" module IBBoard <dev@ibboard.co.uk> parents: diff changeset	896 * and lots of other earlier development tasks ...
275 d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	897
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	898
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	899 \* This Changelog was automatically generated by [github_changelog_generator](https://github.com/skywinder/Github-Changelog-Generator)
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	900
d9352a684e62 Mass update of modules to remove deprecation warnings IBBoard <dev@ibboard.co.uk> parents: 39 diff changeset	901
398 66c406eec60d Update and fix firewall for Ubuntu IBBoard <dev@ibboard.co.uk> parents: 348 diff changeset	902 \* This Changelog was automatically generated by [github_changelog_generator](https://github.com/github-changelog-generator/github-changelog-generator)

Mercurial > repos > other > Puppet

annotate modules/firewall/CHANGELOG.md @ 398:66c406eec60d