salt
/
firewalld-formula
forkato da ExternalMirrors/firewalld-formula
Segui 2
Vota 0
Forka 0
Codice Rilasci 2 Attività
Saltstack Official FirewallD Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31 Commit
1 Ramo (Branch)
Albero (Tree): 141d8a4781
Rami (Branch) Tag
${ item.name }
Crea branch ${ searchTerm }
da '141d8a4781'
${ noResults }
firewalld-formula/firewalld/files/zone.xml

zone.xml 4.0KB
Originale Normal View Cronologia

Initial commit.
10 anni fa
Add warning header to salt-generated files
7 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Initial commit.
10 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Added comment option for zone sources.
8 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Added comment option for zone sources.
8 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Initial commit.
10 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
add ipset support for firewalld
8 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
[fix] service definition in rich rules - thx jdreese on Github
10 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Initial commit.
10 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Initial commit.
10 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Initial commit.
10 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Initial commit.
10 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Initial commit.
10 anni fa
[update] jinja brackets so that resulting output on xml files are better human readable
10 anni fa
Initial commit.
10 anni fa
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117 
  1. <?xml version="1.0" encoding="utf-8"?>

  2. <!--

  3.   This file is managed/generated by salt.

  4.   Do not edit this file manually, it will be overwritten!

  5.   Modify the salt pillar for firewalld instead

  6. -->

  7. <zone{%- if 'target' in zone %} target="{{ zone.target }}"{%- endif %}>

  8.   {% if 'short' in zone %}<short>{{ zone.short }}</short>{% else %}<short>{{ name }}</short>{% endif %}

  9.   {% if 'description' in zone %}<description>{{ zone.description }}</description>{% endif %}

  10. 

  11. {%- if 'interfaces' in zone %}

  12.   {%- for v in zone.interfaces %}

  13.   <interface name="{{ v }}" />

  14.   {%- endfor %}

  15. {%- endif %}

  16. {%- if 'sources' in zone %}

  17.   {%- for v in zone.sources %}

  18.     {%- if 'comment' in v %}

  19.   <!-- {{ v.comment }} -->

  20.   <source address="{{ v.source }}" />

  21.     {%- else %}

  22.   <source address="{{ v }}" />

  23.     {%- endif %}

  24.   {%- endfor %}

  25. {%- endif %}

  26. {%- if 'services' in zone %}

  27.   {%- for v in zone.services %}

  28.   <service name="{{ v }}" />

  29.   {%- endfor %}

  30. {%- endif %}

  31. {%- if 'ports' in zone %}

  32.   {%- for v in zone.ports %}

  33.     {%- if 'comment' in v %}

  34.   <!-- {{ v.comment }} -->

  35.     {%- endif %}

  36.   <port port="{{ v.port }}" protocol="{{ v.protocol }}"/>

  37.   {%- endfor %}

  38. {%- endif %}

  39. {%- if 'icmp_blocks' in zone %}

  40.   {%- for v in zone.icmp_blocks %}

  41.   <icmp-block name="{{ v }}" />

  42.   {%- endfor %}

  43. {%- endif %}

  44. {%- if 'masquerade' in zone %}

  45.   {%- if zone.masquerade %}

  46.   <masquerade/>

  47.   {%- endif %}

  48. {%- endif %}

  49. {%- if 'forward_ports' in zone %}

  50.   {%- for v in zone.forward_ports %}

  51.     {%- if 'comment' in v %}

  52.   <!-- {{ v.comment }} -->

  53.     {%- endif %}

  54.   <forward-port port="{{ v.portid }}" protocol="{{ v.protocol }}"{%- if 'to_port' in v %} to-port="{{ v.to_port }}"{%- endif %}{%- if 'to_addr' in v %} to-addr="{{ v.to_addr }}"{%- endif %} />

  55.   {%- endfor %}

  56. {%- endif %}

  57. 

  58. {%- if 'rich_rules' in zone %}

  59.   {%- for rule in zone.rich_rules %}

  60.   {%- if 'family' in rule %}

  61.   <rule family="{{ rule.family }}">

  62.   {%- else %}

  63.   <rule>

  64.   {%- endif %}    

  65.   {%- if 'ipset' in rule %}

  66.     <source ipset="{{ rule.ipset.name }}"/>

  67.   {%- endif %}

  68.   {%- if 'source' in rule %}

  69.     <source address="{{ rule.source.address }}" {%- if 'invert' in rule.source %}invert="{{ rule.source.invert }}"{%- endif %}/>

  70.   {%- endif %}    

  71.   {%- if 'destination' in rule %}

  72.     <destination address="{{ rule.destination.address }}" {%- if 'invert' in rule.destination %}invert="{{ rule.destination.invert }}"{%- endif %}/>

  73.   {%- endif %}    

  74.   {%- if 'service' in rule %}

  75.     <service name="{{ rule.service }}"/>

  76.   {%- endif %}    

  77.   {%- if 'port' in rule %}

  78.     <port port="{{ rule.port.portid }}" protocol="{{ rule.port.protocol }}"/>

  79.   {%- endif %}    

  80.   {%- if 'protocol' in rule %}

  81.     <protocol value="{{ rule.protocol }}"/>

  82.   {%- endif %}    

  83.   {%- if 'icmp_block' in rule %}

  84.     <icmp_block name="{{ rule.icmp_block }}"/>

  85.   {%- endif %}    

  86.   {%- if 'masquerade' in rule %}

  87.     {%- if rule.masquerade %}<masquerade/>{%- endif %}

  88.   {%- endif %}    

  89.   {%- if 'forward_port' in rule %}

  90.     {%- if 'comment' in rule.forward_port %}

  91.       <!-- {{ rule.forward_port.comment }} -->

  92.     {%- endif %}

  93.     <forward-port port="{{ rule.forward_port.portid }}" protocol="{{ rule.forward_port.protocol }}"{%- if 'to_port' in rule.forward_port %} to-port="{{ rule.forward_port.to_port }}"{%- endif %}{%- if 'to_addr' in rule.forward_port %} to-addr="{{ rule.forward_port.to_addr }}"{%- endif %} />

  94.   {%- endif %}    

  95.   {%- if 'log' in rule %}

  96.     <log{%- if 'prefix' in rule.log %} prefix="{{ rule.log.prefix }}"{%- endif %}{%- if 'level' in rule.log %} level="{{ rule.log.level }}"{%- endif %}>

  97.     {%- if 'limit' in rule.log %}

  98.       <limit value="{{ rule.log.limit }}"/>

  99.     {%- endif %}

  100.     </log>

  101.   {%- endif %}    

  102.   {%- if 'audit' in rule %}

  103.     <audit>{%- if 'limit' in rule.audit %} <limit value="{{ rule.audit.limit }}"/>{%- endif %}</audit>

  104.   {%- endif %}    

  105.   {%- if 'accept' in rule %}

  106.     <accept/>

  107.   {%- endif %}    

  108.   {%- if 'reject' in rule %}

  109.     <reject{%- if 'type' in rule.reject %} type="{{ rule.reject.type }}"{%- endif %}/>

  110.   {%- endif %}    

  111.   {%- if 'drop' in rule %}

  112.     <drop/>

  113.   {%- endif %}    

  114.   </rule>

  115.   {%- endfor %}

  116. {%- endif %}

  117. </zone>