I have a need for a cookbook to manage iptables and ebtables. I’ve been using simple_iptables for starters, but the maintainer is no longer answering and it doesn’t support ebtables. The Opscode Firewall cookbook so far only supports UFW.
Are there plans to add support for iptables/ebtables to the Opscode Firewall cookbook, and if so when? If not I may be able to work on it. Also open to other options.
Michael Hart
Arctic Wolf Networks
M: 226.388.4773
You mean Ubuntu firewall?
Correct me if I'm wrong but isn't UFW just nicer way to manage iptables?
At least I got that kind of an impression by reading Ubuntu docs
considering UFW
On Fri, Jul 26, 2013 at 6:09 PM, Michael Hart
michael.hart@arcticwolf.comwrote:
I have a need for a cookbook to manage iptables and ebtables. I've been
using simple_iptables for starters, but the maintainer is no longer
answering and it doesn't support ebtables. The Opscode Firewall cookbook so
far only supports UFW.Are there plans to add support for iptables/ebtables to the Opscode
Firewall cookbook, and if so when? If not I may be able to work on it. Also
open to other options.cheers
mikeMichael Hart
Arctic Wolf Networks
M: 226.388.4773
By UFW I mean Ubuntu Firewall. I need the full power of iptables and ebtables for what I’m doing, unfortunately UFW abstracts too much.
Michael Hart
Arctic Wolf Networks
M: 226.388.4773
On 2013-07-26, at 12:15 PM, Jasna Benčić <jasna.bencic@teamsnap.commailto:jasna.bencic@teamsnap.com> wrote:
You mean Ubuntu firewall?
Correct me if I’m wrong but isn’t UFW just nicer way to manage iptables? At least I got that kind of an impression by reading Ubuntu docs considering UFW
On Fri, Jul 26, 2013 at 6:09 PM, Michael Hart <michael.hart@arcticwolf.commailto:michael.hart@arcticwolf.com> wrote:
I have a need for a cookbook to manage iptables and ebtables. I’ve been using simple_iptables for starters, but the maintainer is no longer answering and it doesn’t support ebtables. The Opscode Firewall cookbook so far only supports UFW.
Are there plans to add support for iptables/ebtables to the Opscode Firewall cookbook, and if so when? If not I may be able to work on it. Also open to other options.
Michael Hart
Arctic Wolf Networks
M: 226.388.4773
We don't have current plans for ebtables but integration support to provide that would be great contribution.
Joshua
On Friday, July 26, 2013 at 9:09, Michael Hart wrote:
I have a need for a cookbook to manage iptables and ebtables. I've been using simple_iptables for starters, but the maintainer is no longer answering and it doesn't support ebtables. The Opscode Firewall cookbook so far only supports UFW.
Are there plans to add support for iptables/ebtables to the Opscode Firewall cookbook, and if so when? If not I may be able to work on it. Also open to other options.
cheers
mikeMichael Hart
Arctic Wolf Networks
M: 226.388.4773
There's iptables cookbook too - a bit clunky, but gets the job done for
me most of the time. If I need to use other table than filter', then I have to resort to ugly hacks. Don't even ask what has to happen if more than one cookbook needs to update the nat' table.
If/when I have some meaningful amount of free cycles, I've planned to work
on something nicer to use - data-driven, with LWRPs, not requiring having a
freaking template for every rule, and supporting other tables. Michael -
if you happen to start working on it, let me know, we may join our forces.
-- M
On 27 July 2013 03:57, Joshua Timberman joshua@opscode.com wrote:
We don't have current plans for ebtables but integration support to
provide that would be great contribution.Joshua
On Friday, July 26, 2013 at 9:09, Michael Hart wrote:
I have a need for a cookbook to manage iptables and ebtables. I've been
using simple_iptables for starters, but the maintainer is no longer
answering and it doesn't support ebtables. The Opscode Firewall cookbook so
far only supports UFW.Are there plans to add support for iptables/ebtables to the Opscode
Firewall cookbook, and if so when? If not I may be able to work on it. Also
open to other options.cheers
mikeMichael Hart
Arctic Wolf Networks
M: 226.388.4773