Forge Home

ipsec

Manages IPsec on linux machines.

6,772 downloads

6,088 latest version

4.6 quality score

Version information

  • 0.2.3 (latest)
  • 0.2.2
  • 0.2.1
  • 0.2.0
  • 0.1.4
  • 0.1.3
  • 0.1.2
  • 0.1.1
  • 0.1.0
released Dec 8th 2016
This version is compatible with:
  • CentOS
    ,
    RedHat

Start using this module

  • r10k or Code Manager
  • Bolt
  • Manual installation
  • Direct download

Add this module to your Puppetfile:

mod 'bibigon812-ipsec', '0.2.3'
Learn more about managing modules with a Puppetfile

Add this module to your Bolt project:

bolt module add bibigon812-ipsec
Learn more about using this module with an existing project

Manually install this module globally with Puppet module tool:

puppet module install bibigon812-ipsec --version 0.2.3

Direct download is not typically how you would use a Puppet module to manage your infrastructure, but you may want to download the module in order to inspect the code.

Download

Documentation

bibigon812/ipsec — version 0.2.3 Dec 8th 2016

Build Status

Overview

This module provides controls IPsec connections.

Classes

  • ::ipsec - class for managing of the IPsec service.
  • ::ipsec::sa - class for managing Secret Association.
  • ::ipsec::secrets - class for managing secrets of the pair [leftid, rightid]

Example

Add configuration

ipsec { 'IPSEC': }

ipsec::sa { 'TEST-SA-1':
  left           => '192.168.1.1',
  leftprotoport  => all,
  leftsourceip   => '10.0.0.1',
  leftsubnet     => '10.0.0.1/32',
  right          => '192.168.2.1',
  rightprotoport => all,
  rightsubnet    => '10.0.0.2/32',
  auto           => add,
  ike            => 'aes256-sha;dh24',
}

ipsec::secrets { 'TEST-SECRETS-1':
  leftid  => '192.168.1.1',
  rightid => '192.168.2.1',
  psk     => 'preshared secret key',
}

Remove configuration:

ipsec { 'IPSEC': }

ipsec::sa { 'TEST-SA-1':
  ensure => absent,
}

ipsec::secrets { 'TEST-SECRETS-1':
  ensure  => absent,
}