Fixes: #316
Add method instances and prefetch into firewalld_service provider.
We now use --add-entries-from-file
and --remove-entries-from-file
to
change firewalld ipset. Adding or removing entries one by one was really
slow.
This pull request is based on
https://github.com/42wim/puppet-firewalld/blob/04683b46cbe6e6a925c585283941cc363752aceb/lib/puppet/provider/firewalld_ipset/firewall_cmd.rb
first pull request was here: jfroche/puppet-firewalld#4
Hello!
The module does not allow to add/modify protocols for a zone with the firewalld_zone
resource type, but the parameter can be used with the firewall-cmd tool like
firewall-cmd --zone=example --add-protocol=icmp
See docs: firewall-cmd
<!--
Thank you for contributing to this project!
-->
This pull request adds the ability to purge unmanaged firewalld zones.
Fixes #134
Add the option to manage or not the package. Don't change default behaviour.
This allows you to specify protocols
in through firewalld::custom_service
, which are then passed on to firewalld_custom_service
.
Signed-off-by: Jo Vandeginste Jo.Vandeginste@kuleuven.be
<!--
Thank you for contributing to this project!
-->
This pull request allows the reload of firewalld rules to get triggered when they are not present in the runtime stage of firewalld and are only present in permanent. It fixes the rules that get stuck in permanent stage because of a skipped reload caused by a puppet error between the deployment of rules and the reload.
Fixes #276