Pārlūkot izejas kodu

Merge pull request #24 from valibud/master

Add support for inet6 ipsets.
tags/v0.6.2
Niels Abspoel pirms 6 gadiem
vecāks
revīzija
22e301a218
Revīzijas autora e-pasta adrese nav piesaistīta nevienam kontam
2 mainītis faili ar 20 papildinājumiem un 1 dzēšanām
  1. +5
    -0
      firewalld/files/ipset.xml
  2. +15
    -1
      pillar.example

+ 5
- 0
firewalld/files/ipset.xml Parādīt failu

@@ -27,6 +27,11 @@
<option name="hashsize" value="{{ v }}"/>
{%- endfor %}
{%- endif %}
{%- if 'family' in ipset.options %}
{%- for v in ipset.options.family %}
<option name="family" value="{{ v }}"/>
{%- endfor %}
{%- endif %}
{%- endif %}
{%- if 'entries' in ipset %}
{%- for v in ipset.entries %}

+ 15
- 1
pillar.example Parādīt failu

@@ -63,6 +63,21 @@ firewalld:
- 1024
entries:
- 10.0.0.1
fail2ban-ssh-ipv6:
short: fail2ban-ssh-ipv6
description: fail2ban-ssh-ipv6 ipset
type: 'hash:ip'
options:
family:
- inet6
maxelem:
- 65536
timeout:
- 300
hashsize:
- 1024
entries:
- 2a01::1

zones:
public:
@@ -119,4 +134,3 @@ firewalld:
MYPASSTHROUGH:
ipv: ipv4
args: "-t raw -A MYCHAIN -j DROP"


Notiek ielāde…
Atcelt
Saglabāt