Commit graph

10 commits

Author SHA1 Message Date
ovcharenko
85aec2e07a [FIX] "Invalid interface clause" error in UFW module (#2559) (#2666)
Fixes GH-2559
2016-08-16 15:09:17 +02:00
Onni Hakala
61d5fe148c Added example to add a port range (#2712)
I tried to google for this a bit and then figured out how it actually works.
2016-08-12 08:01:01 +02:00
ovcharenko
31a027e2cd [FIX] Bug report: ufw: interface option causes an error (1.9.4) (#1491) (#2668) 2016-08-06 14:39:03 +02:00
Chris Lamb
8d7d070201 system/ufw.py: Add security warning re. removing ufw application prof…
It's not particularly obvious that removing an application will remove it
from ufw's own state, potentially leaving ports open on your box if you
upload your configuration.

Whilst this applies to a lot of things in Ansible, firewall rules might
cross some sort of line that justifies such a warning in his instance.

Signed-off-by: Chris Lamb <chris@chris-lamb.co.uk>
2016-04-23 08:01:19 +02:00
Greg DeKoenigsberg
004dedba8a Changes to author formatting, remove emails 2015-06-16 14:32:39 -04:00
Nicolas Brisac
bc440ade79 Allow filtering of routed/forwarded packets
MAN page states the following :

    Rules for traffic not destined for the  host  itself  but  instead  for
    traffic  that  should  be  routed/forwarded through the firewall should
    specify the  route  keyword  before  the  rule  (routing  rules  differ
    significantly  from  PF  syntax and instead take into account netfilter
    FORWARD chain conventions). For example:

        ufw route allow in on eth1 out on eth2

This commit introduces a new parameter "route=yes/no" to allow just that.
2015-06-16 11:33:08 -04:00
Toshio Kuratomi
88eff11c04 Many more doc fixes 2015-05-15 12:12:26 -07:00
Greg DeKoenigsberg
1c662556e9 Adding author's github id 2015-05-14 01:16:42 -04:00
Chris West
613b3bdda0 Enable "ufw default allow routed"
* The policy is shown in `status verbose`, so all the check mode stuff should keep working.
 * `--dry-run` works as expected.
 * No idea whether it's legal as an argument to `interface`
2014-10-12 12:43:50 +01:00
Michael DeHaan
b1e789968b File extensions! 2014-09-26 10:40:16 -04:00
Renamed from system/ufw (Browse further)