Angelo Verona
b1d6b52307
Default file permission for firewalld.conf is 644 not 640 (CentOS). Even if I think that "others" don't need to read that, it always shows up as file with non-default permissions from default rpm package in security scans. e.g. "rpm -Va |grep ^.M" or more salty way: "salt '*' pkg.verify" / salt '*' pkg.modified firewalld mode=True; manual fix e.g. rpm --setperms firewalld-*.el7.noarch
7年前
Paul Williams
2fd70c9f41
Add support for using ipsets as sources in a zone
I wanted to be able to add an ipset as a source in the zone without using a rich rule. I believe this change accomplishes that. Tested and working on CentOS 7 (salt master and minion).
7年前
Javier Bértoli
141d8a4781
Add warning header to salt-generated files
7年前
Niels Abspoel
5904c75875
add suse_support
7年前
Adam Mendlik
103afc0a18
Reload, rather than restart, the FirewallD service
7年前
Matthew Hoover
cc617a97ef
Added comment option for zone sources.
8年前
hoonetorg
25cdfe3bbe
firewalld 0.4 settings
8年前
hoonetorg
9dc0a77167
implement direct rules
8年前
hoonetorg
b91d65d135
fix data type in zone and service template, which broke formula for 2016.3
8年前
Niels Abspoel
c5a01c837e
add ipset support for firewalld
8年前
Clément Mercier
588bf5efcf
change the restart, it was not effective before
8年前
Niels Abspoel
5fc2f58b0c
improvements to formula with defaults.yaml
8年前
David Bezuidenhout
d55b767b91
[remove] clean-up some code, mostly code commented out
8年前
Niels Abspoel
e77a52cf27
fix newline to make service.xml files more readable
9年前
David Bezuidenhout
8afeae049f
[fix] mising bracket at endfor loop at <destination ipv6
9年前
David Bezuidenhout
941b2768b1
[fix] service definition in rich rules - thx jdreese on Github
9年前
David Bezuidenhout
847417f03e
[update] jinja brackets so that resulting output on xml files are better
human readable
9年前
David Bezuidenhout
b584c44edc
[fix] source attribute key - github issue 1
9年前
Will Saxon
524105e2df
fix header issue
10年前
David Bezuidenhout
baa2afab61
Initial commit.
10年前