ufw

pdk
Installs, configures and manages UFW.

DomKrm

domkrm

3,026 downloads

1,869 latest version

5.0 quality score

Version information

  • 1.1.4 (latest)
  • 1.1.3
  • 1.1.2
  • 1.1.1
  • 1.1.0
  • 1.0.0
released Nov 1st 2019
This version is compatible with:
  • Puppet Enterprise 2019.8.x, 2019.7.x, 2019.5.x, 2019.4.x, 2019.3.x, 2019.2.x, 2019.1.x, 2019.0.x, 2018.1.x, 2017.3.x, 2017.2.x, 2016.4.x
  • Puppet >= 4.10.0 < 7.0.0
  • Debian
    ,
    Ubuntu

Start using this module

Tags: ufw, firewall

Documentation

domkrm/ufw — version 1.1.4 Nov 1st 2019

UFW module for Puppet

Module for UFW (Uncomplicated Firewall) configuration.

Usage

To have Puppet install UFW, include the ufw class. This will install the UFW package, deny all incoming connections and enable UFW.

class { 'ufw': }

To allow certain connections:

ufw::allow { 'ssh':
  port => '22'
}

ufw::allow { 'ssh-from-trusted':
  port => '22'
  from => '10.0.0.1',
}

ufw::allow { 'ssh-on-specific-interface':
  port      => '22',
  interface => 'eth1'
}

To disable all IPv6 connections, you have to initialize ufw class with following parameter:

class { 'ufw':
  ipv6 => false
}

To delete a rule, add ensure => 'absent' to the allow.

ufw::allow { 'ssh':
  ensure => 'absent',
  port   => '22'
}

Allow this to successfully run on all your machines at least once before removing it, in order to assure that the rule is gone.

Limitations

Currently it is not possible to purge unmanaged rules.