Default value: Empty Hash
Allowed value: Any Hash
+##### `chains`
+
+Data type: `Hash`
+
+A hash that holds all data for ferm::chain
+Default value: Empty Hash
+Allowed value: Any Hash
+
##### `forward_log_dropped_packets`
Data type: `Boolean`
ferm::output_policy: ACCEPT
ferm::preserve_chains_in_tables: {}
ferm::rules: {}
+ferm::chains: {}
ferm::input_log_dropped_packets: false
ferm::forward_log_dropped_packets: false
ferm::output_log_dropped_packets: false
# @param rules A hash that holds all data for ferm::rule
# Default value: Empty Hash
# Allowed value: Any Hash
+# @param chains A hash that holds all data for ferm::chain
+# Default value: Empty Hash
+# Allowed value: Any Hash
# @param forward_log_dropped_packets Enable/Disable logging in the FORWARD chain of packets to the kernel log, if no explicit chain matched
# Default value: false
# Allowed values: (true|false)
Boolean $output_log_dropped_packets,
Boolean $input_log_dropped_packets,
Hash $rules,
+ Hash $chains,
Array[Enum['ip','ip6']] $ip_versions,
Hash[String[1],Array[String[1]]] $preserve_chains_in_tables,
) {
Ferm::Chain <| |>
~> Class['ferm::service']
+ $chains.each |$chainname, $attributes| {
+ ferm::chain{$chainname:
+ * => $attributes,
+ }
+ }
+
$rules.each |$rulename, $attributes| {
ferm::rule{$rulename:
* => $attributes,
projects / puppet-ferm.git / commitdiff