kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 26 Pull Requests 2 Projects 2 Activity
chef/cookbooks/firewall/attributes/ufw.rb
Greg Karékinian a32f34b408 Vendor the external cookbooks 
Knife-Zero doesn't include Berkshelf support, so vendoring everything in
the repo is convenient again
2019-10-13 19:17:42 +02:00

13 lines
297 B
Ruby
Raw Blame History

default['firewall']['ufw']['defaults'] = {
ipv6: 'yes',
manage_builtins: 'no',
ipt_sysctl: '/etc/ufw/sysctl.conf',
ipt_modules: 'nf_conntrack_ftp nf_nat_ftp nf_conntrack_netbios_ns',
policy: {
input: 'DROP',
output: 'ACCEPT',
forward: 'DROP',
application: 'SKIP',
},
}
Reference in New Issue View Git Blame Copy Permalink