search

example42 / puppet-iptables

Iptables Puppet Module (for host based firewalling)
http://www.example42.com
Other
14 stars 41 forks source link

Add in/out interface specification capability to rule define #25

Closed javierbertoli closed 11 years ago

javierbertoli commented 11 years ago

Hi Alessandro,

I've added two new parameters to rule define, in order to specify incoming interface. That way, you can specify rules like:

-A POSTROUTING -t nat -o eth1 -j MASQUERADE

can be defined like

iptables::rule { 'masquerade':
    table         => 'nat',
    chain         => 'POSTROUTING',
    target        => 'MASQUERADE',
    out_interface => 'eth1',
}

Regards, Javier

javierbertoli commented 11 years ago

You're right... Totally missed that one. Fixed.