GitHub puppet-firewalld
Puppet module for managing firewalld

Repo Checks ( 9 of 13 successfull )
Metadata Valid
No translation
passed
Correct Puppet Version Range
Supported Puppet version range is %{PUPPET_SUPPORT_RANGE}
failed
With Puppet Version Range
Puppet version range is present in requirements in metadata.json
passed
With Operatingsystem Support
No translation
passed
Supports Only Current Centos
No translation
failed
Supports Latest Centos
No translation
passed
In Modulesync Repo
Is listed as a module managed using modulesync_config
passed
Synced
Has a .msync.yml file
passed
Latest Modulesync
Has been synchronized with the latest tagged version of modulesync_config
failed
Has Modulesync
Is present in voxpupuli/modulesync_config/managed_modules.yml
passed
Released
Is in modulesync_config and in forge releases.
passed
Valid Sync File
If a (optional) sync file is present, it must not contain a `.travis.yml` entry.
failed
Reference Dot Md
The repository has a REFERENCE.md. It needs to be generated / puppet-strings documentation is missing.
passed

Open Pull Requests

Add enhancement for purging unmanaged zones
merge-conflicts
needs-rebase
needs-tests

<!--
Thank you for contributing to this project!

-->

Pull Request (PR) description

This pull request adds the ability to purge unmanaged firewalld zones.

This Pull Request (PR) fixes the following issues:

Fixes #134

Open PR in GitHub
Support specifying priority on rich rules
enhancement

<!--
Thank you for contributing to this project!

-->

Pull Request (PR) description

Adds support for the priority option on rich rules, to allow ordering them outside of the normally implicit - and not guaranteed to be deterministic - ordering imposed by when they're added.

Open PR in GitHub
Speed up ipset entries changes
enhancement

We now use --add-entries-from-file and --remove-entries-from-file to
change firewalld ipset. Adding or removing entries one by one was really
slow.

This pull request is based on
https://github.com/42wim/puppet-firewalld/blob/04683b46cbe6e6a925c585283941cc363752aceb/lib/puppet/provider/firewalld_ipset/firewall_cmd.rb
first pull request was here: jfroche/puppet-firewalld#4

Open PR in GitHub
Added `icmp_block_inversion` parameter for inverting `icmp_blocks` list
needs-tests
tests-fail
Open PR in GitHub
enable eb-family for all relevant firewalld-types
tests-fail

see https://github.com/voxpupuli/puppet-firewalld/issues/298

<!--
Thank you for contributing to this project!

-->

Pull Request (PR) description

<!--
Replace this comment with a description of your pull request.
-->
allow usage of family "eb" for creating bridge-rules.

This Pull Request (PR) fixes the following issues

<!--
Replace this comment with the list of issues or n/a.
Use format:
Fixes #123
Fixes #124
-->
Fixes #298

Open PR in GitHub
modulesync 4.0.0
modulesync
tests-fail

modulesync 4.0.0

Open PR in GitHub
Fixes firewalld_custom_service where only protocols are defined
bug

Pull Request (PR) description

Previously if you wanted to define a custom service that only allows protocols it would error when adding protocols to the service. This was caused by the Puppet code omitting the ports array and the provider assuming that the ports array was specified.

I simply added a check to see if ports array was :unset and if it's :unset just skip finding protocols from that array.

This Pull Request (PR) fixes the following issues

Fixes #306

Open PR in GitHub
Fix276
needs-squash
needs-rebase

<!--
Thank you for contributing to this project!

-->

Pull Request (PR) description

This pull request allows the reload of firewalld rules to get triggered when they are not present in the runtime stage of firewalld and are only present in permanent. It fixes the rules that get stuck in permanent stage because of a skipped reload caused by a puppet error between the deployment of rules and the reload.

This Pull Request (PR) fixes the following issues

Fixes #276

Open PR in GitHub