- From: Jon Wood <
>
- To:
- Subject: [chef] Re: Experiences managing iptables
- Date: Fri, 23 Jul 2010 10:26:07 +0100
On 21 July 2010 15:57, Jacobo García
<
>
wrote:
>
Apart from using opscode/37signals iptables cookbook, is there any
>
other experience of managing iptables with chef?
I implemented a cookbook using node attributes to define firewall
rules at one point, but ended up not using it because it seemed to
overcomplicate matters for the infrastructure I eventually settled on.
It did work quite well for an environment where all traffic is routed
through a single machine and NATed though, allow nodes to specify the
ports and IP addresses they wanted forwarded to them.
Archive powered by MHonArc 2.6.16.