salt
/
firewalld-formula
atdalīts no ExternalMirrors/firewalld-formula
Vērot 2
Pievienot zvaigznīti 0
Atdalīts 0
Kods Laidieni 2 Aktivitāte
Saltstack Official FirewallD Formula
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
18 Revīzijas
1 Atzars
Koks: b91d65d135
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no 'b91d65d135'
${ noResults }
firewalld-formula/firewalld/files/zone.xml

zone.xml 3.8KB
Neapstrādāts Parastais skats Vēsture

Initial commit.
pirms 10 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
Initial commit.
pirms 10 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
Initial commit.
pirms 10 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
add ipset support for firewalld
pirms 8 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
[fix] service definition in rich rules - thx jdreese on Github
pirms 9 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
Initial commit.
pirms 10 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
Initial commit.
pirms 10 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
Initial commit.
pirms 10 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
Initial commit.
pirms 10 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
Initial commit.
pirms 10 gadiem
[update] jinja brackets so that resulting output on xml files are better human readable
pirms 9 gadiem
Initial commit.
pirms 10 gadiem
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107 
  1. <?xml version="1.0" encoding="utf-8"?>

  2. <zone{%- if 'target' in zone %} target="{{ zone.target }}"{%- endif %}>

  3.   {% if 'short' in zone %}<short>{{ zone.short }}</short>{% else %}<short>{{ name }}</short>{% endif %}

  4.   {% if 'description' in zone %}<description>{{ zone.description }}</description>{% endif %}

  5. 

  6. {%- if 'interfaces' in zone %}

  7.   {%- for v in zone.interfaces %}

  8.   <interface name="{{ v }}" />

  9.   {%- endfor %}

  10. {%- endif %}

  11. {%- if 'sources' in zone %}

  12.   {%- for v in zone.sources %}

  13.   <source address="{{ v }}" />

  14.   {%- endfor %}

  15. {%- endif %}

  16. {%- if 'services' in zone %}

  17.   {%- for v in zone.services %}

  18.   <service name="{{ v }}" />

  19.   {%- endfor %}

  20. {%- endif %}

  21. {%- if 'ports' in zone %}

  22.   {%- for v in zone.ports %}

  23.     {%- if 'comment' in v %}

  24.   <!-- {{ v.comment }} -->

  25.     {%- endif %}

  26.   <port port="{{ v.port }}" protocol="{{ v.protocol }}"/>

  27.   {%- endfor %}

  28. {%- endif %}

  29. {%- if 'icmp_blocks' in zone %}

  30.   {%- for v in zone.icmp_blocks %}

  31.   <icmp-block name="{{ v }}" />

  32.   {%- endfor %}

  33. {%- endif %}

  34. {%- if 'masquerade' in zone %}

  35.   {%- if zone.masquerade %}

  36.   <masquerade/>

  37.   {%- endif %}

  38. {%- endif %}

  39. {%- if 'forward_ports' in zone %}

  40.   {%- for v in zone.forward_ports %}

  41.     {%- if 'comment' in v %}

  42.   <!-- {{ v.comment }} -->

  43.     {%- endif %}

  44.   <forward-port port="{{ v.portid }}" protocol="{{ v.protocol }}"{%- if 'to_port' in v %} to-port="{{ v.to_port }}"{%- endif %}{%- if 'to_addr' in v %} to-addr="{{ v.to_addr }}"{%- endif %} />

  45.   {%- endfor %}

  46. {%- endif %}

  47. 

  48. {%- if 'rich_rules' in zone %}

  49.   {%- for rule in zone.rich_rules %}

  50.   {%- if 'family' in rule %}

  51.   <rule family="{{ rule.family }}">

  52.   {%- else %}

  53.   <rule>

  54.   {%- endif %}    

  55.   {%- if 'ipset' in rule %}

  56.     <source ipset="{{ rule.ipset.name }}"/>

  57.   {%- endif %}

  58.   {%- if 'source' in rule %}

  59.     <source address="{{ rule.source.address }}" {%- if 'invert' in rule.source %}invert="{{ rule.source.invert }}"{%- endif %}/>

  60.   {%- endif %}    

  61.   {%- if 'destination' in rule %}

  62.     <destination address="{{ rule.destination.address }}" {%- if 'invert' in rule.destination %}invert="{{ rule.destination.invert }}"{%- endif %}/>

  63.   {%- endif %}    

  64.   {%- if 'service' in rule %}

  65.     <service name="{{ rule.service }}"/>

  66.   {%- endif %}    

  67.   {%- if 'port' in rule %}

  68.     <port port="{{ rule.port.portid }}" protocol="{{ rule.port.protocol }}"/>

  69.   {%- endif %}    

  70.   {%- if 'protocol' in rule %}

  71.     <protocol value="{{ rule.protocol }}"/>

  72.   {%- endif %}    

  73.   {%- if 'icmp_block' in rule %}

  74.     <icmp_block name="{{ rule.icmp_block }}"/>

  75.   {%- endif %}    

  76.   {%- if 'masquerade' in rule %}

  77.     {%- if rule.masquerade %}<masquerade/>{%- endif %}

  78.   {%- endif %}    

  79.   {%- if 'forward_port' in rule %}

  80.     {%- if 'comment' in rule.forward_port %}

  81.       <!-- {{ rule.forward_port.comment }} -->

  82.     {%- endif %}

  83.     <forward-port port="{{ rule.forward_port.portid }}" protocol="{{ rule.forward_port.protocol }}"{%- if 'to_port' in rule.forward_port %} to-port="{{ rule.forward_port.to_port }}"{%- endif %}{%- if 'to_addr' in rule.forward_port %} to-addr="{{ rule.forward_port.to_addr }}"{%- endif %} />

  84.   {%- endif %}    

  85.   {%- if 'log' in rule %}

  86.     <log{%- if 'prefix' in rule.log %} prefix="{{ rule.log.prefix }}"{%- endif %}{%- if 'level' in rule.log %} level="{{ rule.log.level }}"{%- endif %}>

  87.     {%- if 'limit' in rule.log %}

  88.       <limit value="{{ rule.log.limit }}"/>

  89.     {%- endif %}

  90.     </log>

  91.   {%- endif %}    

  92.   {%- if 'audit' in rule %}

  93.     <audit>{%- if 'limit' in rule.audit %} <limit value="{{ rule.audit.limit }}"/>{%- endif %}</audit>

  94.   {%- endif %}    

  95.   {%- if 'accept' in rule %}

  96.     <accept/>

  97.   {%- endif %}    

  98.   {%- if 'reject' in rule %}

  99.     <reject{%- if 'type' in rule.reject %} type="{{ rule.reject.type }}"{%- endif %}/>

  100.   {%- endif %}    

  101.   {%- if 'drop' in rule %}

  102.     <drop/>

  103.   {%- endif %}    

  104.   </rule>

  105.   {%- endfor %}

  106. {%- endif %}

  107. </zone>