- Description
- Setup requirements
- Usage - Configuration options and additional functionality
- Limitations - OS compatibility, etc.
Manage socketfilterfw with Puppet. The code relies on exec statements, which isn't ideal, but cleans up a lot of the code that I had originally.
Posting here for suggestions, and in case others might benefit from something similar.
I use r10k for managing my Puppet modules.
Add this to your Puppetfile:
mod 'puppet-macfirewall',
:git => 'https://github.com/avantgardefuselage/puppet-macfirewall.git',
:commit => 'COMMIT_NUMBER'
Example usage could be:
class profile::firewall {
macfirewall { 'Enable Firewall':
action => 'globalstate',
value => 'on',
}
macfirewall { 'Enable Stealthmode':
action => 'stealth',
value => 'on',
}
}
This was written and tested on:
- Puppet 4
- macOS 10.12.x