GitHub puppet-fail2ban
26
26
14
This module installs, configures and manages the Fail2ban service.

Metadata Valid
No translation
Correct Puppet Version Range
Supported Puppet version range is %{PUPPET_VERSION_RANGE}
With Puppet Version Range
Puppet version range is present in requirements in metadata.json
With Operatingsystem Support
No translation
Supports Only Current Debian
No translation
Supports Latest Debian
No translation
Supports Only Current Ubuntu
No translation
Supports Latest Ubuntu
No translation
Supports Only Current Centos
No translation
Supports Latest Centos
No translation
In Modulesync Repo
No translation
In Plumbing
Is in plumbing
Has Secrets
Has a .sync.yml file
Synced
Has a .msync.yml file
Latest Modulesync
No translation
Has Modulesync
Is present in voxpupuli/modulesync_config/managed_modules.yml
Released
Is in modulesync_config and in forge releases.
Reference Dot Md
The repository has a REFERENCE.md. It needs to be generated / puppet-strings documentation is missing.

Open Pull Requests

[WIP] Support overriding configuration for default jails

The PR addresses the same issue as #48 but with a bit more generic approach.

Using 2 level Hash might be possible to override basically any attribute in the template.

yaml
fail2ban::jails:
- ssh
- ssh-ddos
fail2ban::jails_config:
ssh:
port: 'ssh,2200'
ssh-ddos:
port: 'ssh,2200'

Using lookup() in templates might not be the best approach, but I can't think of better alternative. Passing explicitly each variable explicitly to the template would generate loads of code. Another option is to write a custom function for checking key existence in the configuration hash (but it doesn't add much to code readability).

Let me know if you're ok with this, so that I'm able to proceed with modifying rest of jails.

Fix apache-badbots on RedHat

These lines were probably commented out by mistake in refactoring (d9d2d03d396fb1d24ff7602d253c9748c99b9cdc).

Btw. there are no acceptance tests for RedHat, it might be safer to use Centos templates (if there are no substantial differences).

Allow changing the ports of the fail2banned services
merge-conflicts
needs-work

<!--
Thank you for contributing to this project!

-->

Pull Request (PR) description

This request allows changing the default port for any service watched by fail2ban. Check Readme.md for the usage of the "ports" parameter.

Most changes made in this request are just ternary operators on templates and the addition of the "ports" parameter hash to init.pp

<!--
Replace this comment with a description of your pull request.
-->

This Pull Request (PR) fixes the following issues

Adds feature: Allow modification of default ports for each service

<!--
Replace this comment with the list of issues or n/a.
Use format:
Fixes #123
Fixes #124
-->

initial support for opensuse

Pull Request (PR) description

Adding support for OpenSuSE

This Pull Request (PR) fixes the following issues

Does not work on OpenSuSE