Permalink
Commits on Dec 20, 2013
  1. Merge pull request #267 from phemmer/negation_support

    Ashley Penney committed Dec 20, 2013
    Negation support
  2. Merge pull request #268 from phemmer/ipsec_support

    Ashley Penney committed Dec 20, 2013
    add ipsec policy matching
  3. Merge pull request #271 from phemmer/fix_builtin_chains

    Ashley Penney committed Dec 20, 2013
    fix handling of builtin chains
  4. Merge pull request #270 from phemmer/nat_input

    Ashley Penney committed Dec 20, 2013
    allow input chain in nat table
  5. Merge pull request #273 from apenney/add-beaker-tests

    Ashley Penney committed Dec 20, 2013
    Convert rspec-system tests to beaker-rspec.
  6. Convert rspec-system tests to beaker-rspec.

    Ashley Penney committed Dec 19, 2013
    This work migrates the existing tests to beaker-rspec.
  7. Use a more generic way for parsing negated options, not only for dest…

    vStone committed with phemmer Aug 23, 2012
    …ination and source
  8. Fix parsing negated values

    vStone committed with phemmer Aug 22, 2012
  9. Use host_to_mask so we can negate a mask. Also added documentation.

    vStone committed with phemmer Aug 22, 2012
    A custom provider should probably be aware that these kind of masks are possible.
  10. fix handling of builtin chains

    phemmer committed Dec 18, 2013
  11. allow input chain in nat table

    phemmer committed Dec 18, 2013
  12. add ipsec policy matching

    phemmer committed Jan 18, 2013
    Conflicts:
    	lib/puppet/provider/firewall/iptables.rb
    	lib/puppet/type/firewall.rb
  13. Merge pull request #275 from apenney/fix-rspec

    Ashley Penney committed Dec 20, 2013
    Fix rspec on Puppet 3.4/rspec 2.14.
  14. Handle the change to Puppet::Provider::Config in 3.4.

    Ashley Penney committed Dec 20, 2013
  15. Update to use modern rspec 2.14 syntax.

    Ashley Penney committed Dec 20, 2013
    This updates from mocha .stubs to allow(x).to receive(x) syntax,
    and tweaks the Gemfile/Rakefile too.
Commits on Oct 16, 2013
  1. Merge pull request #248 from senax/generate-parser-list

    Ashley Penney committed Oct 16, 2013
    Generate parser list
  2. Merge pull request #257 from evaryont/master

    Ashley Penney committed Oct 16, 2013
    Support conntrack stateful firewall matching
  3. Support conntrack stateful firewall matching

    evaryont committed Oct 16, 2013
    Since Linux 3.7+ the "state" module has been removed from the kernel, leaving
    only the "conntrack" module. This patch adds support for the conntrack module in
    iptables by adding a new parameter to the firewall type, 'ctstate'.
    
    Updates the README to demonstrate using the ctstate parameter instead of state
    to nudge people to use it instead. This is safe as far as back to Linux kernel
    2.6.18, so long as CONFIG_NF_CONNTRACK is enabled.
Commits on Oct 4, 2013
  1. Merge pull request #255 from apenney/metadata

    Ashley Penney committed Oct 4, 2013
    FM-103: Add metadata.json to all modules.
  2. FM-103: Add metadata.json to all modules.

    Ashley Penney committed Oct 4, 2013
Commits on Oct 2, 2013
  1. Merge pull request #253 from stefanozanella/spec_helper_fix

    Ashley Penney committed Oct 2, 2013
    Remove redundant `include` call in system spec helper.
  2. Merge pull request #252 from stefanozanella/update_gitignore

    Ashley Penney committed Oct 2, 2013
    Add Bundler byproducts to the list of ignored files.
Commits on Sep 27, 2013
  1. Remove redundant `include` call in system spec helper.

    stefanozanella committed Sep 27, 2013
    `rspec-system-puppet` helpers are already included few lines above the deleted
    line, which by the way would have no effect anyway.
  2. Add Bundler byproducts to the list of ignored files.

    stefanozanella committed Sep 27, 2013
    I assume this commit is self-explanatory...
Commits on Sep 15, 2013