depends: |
|
---|---|
configuration: | See http://download.configserver.com/csf/install.txt for setup instructions. |
Simply allow/deny rules:
csf.rule_present:
ip: 1.2.3.4
method: allow
salt.states.csf.
nics_skip
(name, nics, ipv6)¶Alias for csf.nics_skipped
salt.states.csf.
nics_skipped
(name, nics, ipv6=False)¶salt.states.csf.
option_present
(name, value, reload=False)¶Ensure the state of a particular option/setting in csf.
salt.states.csf.
ports_open
(name, ports, proto=u'tcp', direction=u'in')¶Ensure ports are open for a protocol, in a direction. e.g. - proto='tcp', direction='in' would set the values for TCP_IN in the csf.conf file.
salt.states.csf.
rule_absent
(name, method, port=None, proto=u'tcp', direction=u'in', port_origin=u'd', ip_origin=u's', ttl=None, reload=False)¶Ensure iptable is not present.
salt.states.csf.
rule_present
(name, method, port=None, proto=u'tcp', direction=u'in', port_origin=u'd', ip_origin=u's', ttl=None, comment=u'', reload=False)¶Ensure iptable rule exists.
salt.states.csf.
testing_off
(name, reload=False)¶Ensure testing mode is enabled in csf.
salt.states.csf.
testing_on
(name, reload=False)¶Ensure testing mode is enabled in csf.
Docs for previous releases are available on readthedocs.org.
Latest Salt release: 2018.3.0