79. cdist-type__pf_ruleset(7)¶

Copy a pf(4) ruleset to $__target_host

Jake Guffey <jake.guffey--@--eprotex.com>

79.1. DESCRIPTION¶

This type is used on *BSD systems to manage the pf firewall’s ruleset.

79.2. REQUIRED PARAMETERS¶

state: Either “absent” (no ruleset at all) or “present”, defaults to “present”.

79.3. OPTIONAL PARAMETERS¶

source: If supplied, use to define the ruleset to load onto the $__target_host for pf(4). Note that this type is almost useless without a ruleset defined, but it’s technically not needed, e.g. for the case of disabling the firewall temporarily.

79.4. EXAMPLES¶

# Remove the current ruleset in place
__pf_ruleset --state absent

# Enable the firewall with the ruleset defined in $__manifest/files/pf.conf
__pf_ruleset --state present --source $__manifest/files/pf.conf

79.5. SEE ALSO¶

cdist-type(7)
pf(4)

79.6. COPYING¶

Copyright (C) 2012 Jake Guffey. Free use of this software is granted under the terms of the GNU General Public License version 3 (GPLv3).