51 Revīzijas (5909f45fdfe001a21a30780f82ebd6acbebcaef8)

Autors SHA1 Ziņojums Datums
  Imran Iqbal 3a61e7de16
chore(salt-lint): ignore violation [skip ci] pirms 2 gadiem
  Gino Naumann 8d5c0c9410
fix(debian10 iptables): install iptables from buster-backports pirms 3 gadiem
  Steven Daniele 9c2b41d0f9 feat(rich-rules): add priority to rich rules pirms 3 gadiem
  Gino Naumann 194cb99f16 fix(zone.xml): fix jinja error in rule.reject pirms 3 gadiem
  Gino Naumann 88f9fd4687 fix(zone.xml): fix XML error pirms 3 gadiem
  Arnaud Patard a2f4f3b36e feat(zone.xml): allow to rate limit 'accept' in rich rules pirms 3 gadiem
  Daniel Dehennin a29e81bac6
fix(_mapdata): ensure map data is directly under `values` pirms 3 gadiem
  Imran Iqbal 22869e0c7f
test(map): verify `map.jinja` dump using `_mapdata` state pirms 3 gadiem
  Imran Iqbal 0ff53ffb27
feat(firewalld.conf): support configuration of `AllowZoneDrifting` pirms 4 gadiem
  Steven Daniele afcf5e7700
refactor: split default maps into separate files pirms 4 gadiem
  Steven Daniele 94d2b0b97c
fix: do not error on unknown os_family grain pirms 4 gadiem
  Imran Iqbal 69df9a62d6
test: verify map output using `yaml_dump` pirms 4 gadiem
  Imran Iqbal 204efe5fc7
style(zone.xml): remove all trailing whitespaces pirms 4 gadiem
  Imran Iqbal d8f0f47a54
fix(zone.xml): adjust whitespacing to pass tests & macro at top of file pirms 4 gadiem
  Steven Daniele cd4cec0089 feat: allow rich_rules to be specified as a dict pirms 4 gadiem
  Michal Hrusecky 8d0172f5c7
feat(zone.xml): allow more services definition inside zone pirms 4 gadiem
  Imran Iqbal 0f808d6afb
fix(yamllint): fix all errors pirms 5 gadiem
  Imran Iqbal de4e1915fb
fix(map.jinja): fix `salt-lint` errors pirms 5 gadiem
  Steven Daniele 12b696a8fe Remove name attribute in icmp-block-inversion pirms 5 gadiem
  Steven Daniele 64825e20ab Fix typo in icmp block inversion key name pirms 5 gadiem
  Niels Abspoel ae1f2453d3 add updated firewalld.conf from 0.7.1 pirms 5 gadiem
  N ad37448038
feat(linux): archlinux support (no osfinger grain) pirms 5 gadiem
  Niels Abspoel a438f30f50 fix spacing in closing tags pirms 5 gadiem
  Niels Abspoel 18fc482853 update service and zones with more options pirms 5 gadiem
  Valentin Bud d1d7a9186c Add support for inet6 ipsets. pirms 6 gadiem
  Javier Bértoli 15a48462f0 Refactor backend format, add backward compatibility, simple pkg testing pirms 6 gadiem
  Javier Bértoli d3928d1be0 Refactor ipset format, add backward compatibility pirms 6 gadiem
  Javier Bértoli 7bc3a9cdd4 Use mapped data instead of pillar.get data pirms 6 gadiem
  Niels Abspoel 7c0b6aeb55 fix whitespacing pirms 6 gadiem
  Niels Abspoel 36da1094b7 update firewalld formula for firewalld > 0.6 pirms 6 gadiem
  N 1ba51b8583 notify nosupport if SLES version < 15 pirms 6 gadiem
  Niels Abspoel c7f4b3a611
Revert "Fix ipset:type colon handling error" pirms 6 gadiem
  Javier Bértoli 2fc03fbd70 Fix ipset:type colon handling error pirms 6 gadiem
  Angelo Verona b1d6b52307 Default file permission for firewalld.conf is 644 not 640 (CentOS). Even if I think that "others" don't need to read that, it always shows up as file with non-default permissions from default rpm package in security scans. e.g. "rpm -Va |grep ^.M" or more salty way: "salt '*' pkg.verify" / salt '*' pkg.modified firewalld mode=True; manual fix e.g. rpm --setperms firewalld-*.el7.noarch pirms 7 gadiem
  Paul Williams 2fd70c9f41
Add support for using ipsets as sources in a zone pirms 7 gadiem
  Javier Bértoli 141d8a4781 Add warning header to salt-generated files pirms 7 gadiem
  Niels Abspoel 5904c75875 add suse_support pirms 7 gadiem
  Adam Mendlik 103afc0a18 Reload, rather than restart, the FirewallD service pirms 7 gadiem
  Matthew Hoover cc617a97ef Added comment option for zone sources. pirms 8 gadiem
  hoonetorg 25cdfe3bbe firewalld 0.4 settings pirms 8 gadiem
  hoonetorg 9dc0a77167 implement direct rules pirms 8 gadiem
  hoonetorg b91d65d135 fix data type in zone and service template, which broke formula for 2016.3 pirms 8 gadiem
  Niels Abspoel c5a01c837e add ipset support for firewalld pirms 8 gadiem
  Clément Mercier 588bf5efcf change the restart, it was not effective before pirms 8 gadiem
  Niels Abspoel 5fc2f58b0c improvements to formula with defaults.yaml pirms 8 gadiem
  David Bezuidenhout d55b767b91 [remove] clean-up some code, mostly code commented out pirms 8 gadiem
  Niels Abspoel e77a52cf27 fix newline to make service.xml files more readable pirms 9 gadiem
  David Bezuidenhout 8afeae049f [fix] mising bracket at endfor loop at <destination ipv6 pirms 9 gadiem
  David Bezuidenhout 941b2768b1 [fix] service definition in rich rules - thx jdreese on Github pirms 9 gadiem
  David Bezuidenhout 847417f03e [update] jinja brackets so that resulting output on xml files are better pirms 9 gadiem