Configures masquerading on the server
Sam Bashton

Sam Bashton



11,864 latest version

4.6 quality score

Version information

  • 0.1.2 (latest)
  • 0.1.1
  • 0.1.0
  • 0.0.1
released Jul 3rd 2019
This version is compatible with:
  • RedHat

Start using this module

Tags: nat


bashtoni/masq — version 0.1.2 Jul 3rd 2019


####Table of Contents

  1. Overview
  2. Module Description - What the module does and why it is useful
  3. Usage - Configuration options and additional functionality
  4. Limitations - OS compatibility, etc.
  5. Development - Guide for contributing to the module


Configures a machine with masquerading, allowing it to act as a NAT router for other machines

##Module Description

I wrote this module to configure instances as NAT for use inside Amazon VPC, but this could be used anywhere you want masquerading.



This module uses the Puppetlabs firewall module to add the masquerading rules.

As a minimum you need to add:

class { 'firewall': }
class { 'masq': }

If you want to avoid NATing traffic destined for private address space, you can set the parameter 'nat_rfc1918' to false. Note this will prevent and subsequent POSTROUTING rules from being executed.


Linux specific


Please submit pull requests to github -