56 lines
1.2 KiB
Text
56 lines
1.2 KiB
Text
|
cdist-type__pf_ruleset(7)
|
||
|
=========================
|
||
|
|
||
|
NAME
|
||
|
----
|
||
|
cdist-type__pf_ruleset - Copy a pf(4) ruleset to $__target_host
|
||
|
|
||
|
|
||
|
DESCRIPTION
|
||
|
-----------
|
||
|
This type is used on \*BSD systems to manage the pf firewall's ruleset.
|
||
|
|
||
|
|
||
|
REQUIRED PARAMETERS
|
||
|
-------------------
|
||
|
state
|
||
|
Either "absent" (no ruleset at all) or "present", defaults to "present".
|
||
|
|
||
|
|
||
|
OPTIONAL PARAMETERS
|
||
|
-------------------
|
||
|
source
|
||
|
If supplied, use to define the ruleset to load onto the $__target_host for pf(4).
|
||
|
Note that this type is almost useless without a ruleset defined, but it's technically not
|
||
|
needed, e.g. for the case of disabling the firewall temporarily.
|
||
|
|
||
|
|
||
|
EXAMPLES
|
||
|
--------
|
||
|
|
||
|
.. code-block:: sh
|
||
|
|
||
|
# Remove the current ruleset in place
|
||
|
__pf_ruleset --state absent
|
||
|
|
||
|
# Enable the firewall with the ruleset defined in $__manifest/files/pf.conf
|
||
|
__pf_ruleset --state present --source $__manifest/files/pf.conf
|
||
|
|
||
|
|
||
|
SEE ALSO
|
||
|
--------
|
||
|
:strong:`pf`\ (4)
|
||
|
|
||
|
|
||
|
AUTHORS
|
||
|
-------
|
||
|
Jake Guffey <jake.guffey--@--eprotex.com>
|
||
|
|
||
|
|
||
|
COPYING
|
||
|
-------
|
||
|
Copyright \(C) 2012 Jake Guffey. You can redistribute it
|
||
|
and/or modify it under the terms of the GNU General Public License as
|
||
|
published by the Free Software Foundation, either version 3 of the
|
||
|
License, or (at your option) any later version.
|