chef - [chef] Re: Re: iptables and ebtables

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: Re: iptables and ebtables

From: Maciej Pasternacki < >
To:
Subject: [chef] Re: Re: iptables and ebtables
Date: Sat, 27 Jul 2013 11:39:55 +0200

There's `iptables` cookbook too - a bit clunky, but gets the job done for me most of the time. If I need to use other table than `filter', then I have to resort to ugly hacks. Don't even ask what has to happen if more than one cookbook needs to update the `nat' table.

If/when I have some meaningful amount of free cycles, I've planned to work on something nicer to use - data-driven, with LWRPs, not requiring having a freaking *template* for every rule, and supporting other tables. Michael - if you happen to start working on it, let me know, we may join our forces.

-- M

On 27 July 2013 03:57, Joshua Timberman < " target="_blank"> > wrote:

We don't have current plans for ebtables but integration support to provide that would be great contribution.

Joshua

On Friday, July 26, 2013 at 9:09, Michael Hart wrote:

I have a need for a cookbook to manage iptables and ebtables. I've been using simple_iptables for starters, but the maintainer is no longer answering and it doesn't support ebtables. The Opscode Firewall cookbook so far only supports UFW.

Are there plans to add support for iptables/ebtables to the Opscode Firewall cookbook, and if so when? If not I may be able to work on it. Also open to other options.

cheers

mike

--

Michael Hart

Arctic Wolf Networks

M: 226.388.4773

[chef] iptables and ebtables, Michael Hart, 07/26/2013
- [chef] Re: iptables and ebtables, Jasna Benčić, 07/26/2013
  - [chef] Re: iptables and ebtables, Michael Hart, 07/26/2013
- [chef] Re: iptables and ebtables, Joshua Timberman, 07/26/2013
  - [chef] Re: Re: iptables and ebtables, Maciej Pasternacki, 07/27/2013