On Sun, Jul 10, 2011 at 12:15 PM, Ronen Narkis <nark...@gmail.com> wrote:
> Iv been going through a multitude of firewall modules not being able to > find a simple module that open and closes ports on Redhat/Centos 5.6 > > All the modules that iv tried keep open ports multiple times (each time > puppet agent runs): > > ACCEPT > -A INPUT -p tcp -m multiport --dports 80 -m comment --comment "Allow > clarity" -m state --state NEW -j ACCEPT > -A INPUT -p tcp -m multiport --dports 5672 -m comment --comment "JMS port" > -m state --state NEW -j ACCEPT > -A INPUT -p tcp -m multiport --dports 1099 -m comment --comment "Allow rmi" > -m state --state NEW -j ACCEPT > -A INPUT -p tcp -m multiport --dports 9999 -m comment --comment "Allow jmx" > -m state --state NEW -j ACCEPT > -A INPUT -p tcp -m multiport --dports 9999 -m comment --comment "Allow jmx" > -m state --state NEW -j ACCEPT > -A INPUT -p tcp -m multiport --dports 5672 -m comment --comment "JMS port" > -m state --state NEW -j ACCEPT > -A INPUT -p tcp -m multiport --dports 55672 -m comment --comment "Allowing > rabbit managment port" -m state --state NEW -j ACCEPT > -A INPUT -p tcp -m multiport --dports 1099 -m comment --comment "Allow rmi" > -m state --state NEW -j ACCEPT > -A INPUT -p tcp -m multiport --dports 80 -m comment --comment "Allow > clarity" -m state --state NEW -j ACCEPT > > Among the modules iv tried: > > https://github.com/pdeaudney/puppet-firewall > https://github.com/puppetlabs/puppetlabs-firewall > > Iv also tried: > > https://github.com/duritong/puppet-shorewall > > And didn't manager to get it going, > > Id be grateful to Any reference to a simple working Redhat/Centos module > > Ronen > I haven't looked at it closely yet (but I plan to), but I've heard good things about this module: https://labs.riseup.net/code/projects/shared-shorewall -- > You received this message because you are subscribed to the Google Groups > "Puppet Users" group. > To post to this group, send email to puppet-users@googlegroups.com. > To unsubscribe from this group, send email to > puppet-users+unsubscr...@googlegroups.com. > For more options, visit this group at > http://groups.google.com/group/puppet-users?hl=en. > -- <http://aws.amazon.com/solutions/solution-providers/brandorr/> -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
