| depends: |
|
|---|---|
| configuration: | See http://download.configserver.com/csf/install.txt for setup instructions. |
Simply allow/deny rules:
csf.rule_present:
ip: 1.2.3.4
method: allow
salt.states.csf.nics_skip(name, nics, ipv6)¶Alias for csf.nics_skipped
salt.states.csf.nics_skipped(name, nics, ipv6=False)¶salt.states.csf.option_present(name, value, reload=False)¶Ensure the state of a particular option/setting in csf.
salt.states.csf.ports_open(name, ports, proto='tcp', direction='in')¶Ensure ports are open for a protocol, in a direction. e.g. - proto=’tcp’, direction=’in’ would set the values for TCP_IN in the csf.conf file.
salt.states.csf.rule_absent(name, method, port=None, proto='tcp', direction='in', port_origin='d', ip_origin='s', ttl=None, reload=False)¶Ensure iptable is not present.
salt.states.csf.rule_present(name, method, port=None, proto='tcp', direction='in', port_origin='d', ip_origin='s', ttl=None, comment='', reload=False)¶Ensure iptable rule exists.
salt.states.csf.testing_off(name, reload=False)¶Ensure testing mode is enabled in csf.
salt.states.csf.testing_on(name, reload=False)¶Ensure testing mode is enabled in csf.
Docs for previous releases are available on readthedocs.org.
Latest Salt release: 2018.3.3