nftables resources should be within if !defined

tom-krieger / cis_security_hardening

Define a complete security baseline and monitor the baseline's rules. The definition of the baseline should be done in Hiera. The purpose of the module is to give the ability to setup a complete security baseline which not necessarily have to stick to industry security guides like the CIS benchmarks.

Apache License 2.0

16 stars 10 forks source link

nftables resources should be within if !defined #23

Closed canihavethisone closed 1 year ago

canihavethisone commented 1 year ago

nftables_install.pp should be in the same style as iptables_install.pp, to have package and service resources within if !defined

tom-krieger commented 1 year ago

There's a new nftables module on the Forge. I check this module.

canihavethisone commented 1 year ago

https://forge.puppet.com/modules/puppet/nftables is good, i have used it elsewhere.