feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem feat(yamllint): include for this repo and apply rules throughout
* Semi-automated using `ssf-formula` (v0.5.0)
* Fix errors shown below:
```bash
ufw-formula$ $(grep "\- yamllint" .travis.yml | sed -e "s:^\s\+-\s\(.*\):\1:")
pillar.example
1:1 warning missing document start "---" (document-start)
3:12 warning truthy value should be one of [false, true] (truthy)
7:11 warning truthy value should be one of [false, true] (truthy)
12:22 warning truthy value should be one of [false, true] (truthy)
64:13 warning truthy value should be one of [false, true] (truthy)
69:13 warning truthy value should be one of [false, true] (truthy)
77:13 warning truthy value should be one of [false, true] (truthy)
84:14 warning truthy value should be one of [false, true] (truthy)
101:16 warning truthy value should be one of [false, true] (truthy)
106:14 warning truthy value should be one of [false, true] (truthy)
110:13 warning truthy value should be one of [false, true] (truthy)
test/salt/pillar/default.sls
1:1 warning missing document start "---" (document-start)
2:12 warning truthy value should be one of [false, true] (truthy)
9:14 warning truthy value should be one of [false, true] (truthy)
12:13 warning truthy value should be one of [false, true] (truthy)
15:13 warning truthy value should be one of [false, true] (truthy)
19:13 warning truthy value should be one of [false, true] (truthy)
25:14 warning truthy value should be one of [false, true] (truthy)
29:13 warning truthy value should be one of [false, true] (truthy)
```
pirms 5 gadiem |
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118 |
- # -*- coding: utf-8 -*-
- # vim: ft=yaml
- ---
- ufw:
-
- enabled: true
-
- settings:
- loglevel: low
- ipv6: true
- default_input_policy: 'DROP'
- default_output_policy: 'ACCEPT'
- default_forward_policy: 'DROP'
- default_application_policy: 'SKIP'
- manage_builtins: false
- ipt_sysctl: '/etc/ufw/sysctl.conf'
- ipt_modules:
- - nf_conntrack_ftp
- - nf_nat_ftp
- - nf_conntrack_netbios_ns
-
- sysctl:
- forwarding: 1
- rp_filter: 1
- accept_source_route: 0
- accept_redirects: 0
- icmp_echo_ignore_broadcasts: 1
- icmp_ignore_bogus_error_responses: 1
- icmp_echo_ignore_all: 0
- log_martians: 0
- tcp_syncookies: 0
- tcp_sack: 1
- ipv6_autoconf: 1
- use_tempaddr: 1
-
- services:
-
- # Allow 80/tcp (http) traffic from only two remote addresses.
- http:
- protocol: tcp
- from_addr:
- - 10.0.2.15
- - 10.0.2.16
- comment: Upstream loadbalancers
-
- # Allow 443/tcp (https) traffic from network 10.0.0.0/8 to an specific local ip.
- https:
- protocol: tcp
- from_addr:
- - 10.0.0.0/8
- to_addr: 10.0.2.1
- comment: Intraweb portal
-
- # Allow from a service port.
- smtp:
- protocol: tcp
- comment: Mail relay
-
- # Allow from a specific port, by number.
- 139:
- protocol: tcp
- comment: Netbios
-
- # Deny from a specific port, by number.
- 140:
- protocol: tcp
- deny: true
-
- # Deny everything from a specific ip address
- '*':
- protocol: tcp
- deny: true
- from_addr: 10.0.0.1
-
- # Deny everything from multiple ip addresses and avoid
- # conflicts with already defined service '*'
- '*/multiple':
- to_port: '*'
- protocol: tcp
- deny: true
- from_addr:
- - 10.0.0.2
- - 10.0.0.3
-
- # Limit a specific port, by number.
- 170:
- limit: true
- protocol: tcp
- comment: Print service
-
- # Allow from a range of ports, udp.
- "10000:20000":
- protocol: udp
- comment: We need ports, lots of ports
-
- # Allow from two specific ports, udp.
- "30000,40000":
- protocol: udp
- comment: Game server and admin
-
- # Allow applications defined at /etc/ufw/applications.d/
- applications:
- OpenSSH:
- enabled: true
- comment: We are using fail2ban anyway
-
- # Limit access to salt master
- Saltmaster:
- limit: true
-
- # Deny access to Postgresql
- Postgresql:
- deny: true
-
- # Allow all traffic in on the specified interface
- interfaces:
- eth1:
- comment: Honey pot
|