salt.modules.apf

Support for Advanced Policy Firewall (APF)

maintainer:

Mostafa Hussein <mostafa.hussein91@gmail.com>

maturity:

new

depends:

python-iptables

platform:

Linux

salt.modules.apf.allow(ip, port=None)

Add host (IP/FQDN) to allow_hosts.rules and immediately load new rule into firewall

CLI Example:

salt '*' apf.allow 127.0.0.1

salt.modules.apf.deny(ip)

Add host (IP/FQDN) to deny_hosts.rules and immediately load new rule into firewall

CLI Example:

salt '*' apf.deny 1.2.3.4

salt.modules.apf.disable()

Stop (flush) all firewall rules

CLI Example:

salt '*' apf.disable

salt.modules.apf.enable()

Load all firewall rules

CLI Example:

salt '*' apf.enable

salt.modules.apf.refresh()

Refresh & resolve dns names in trust rules

CLI Example:

salt '*' apf.refresh

salt.modules.apf.reload()

Stop (flush) & reload firewall rules

CLI Example:

salt '*' apf.reload

salt.modules.apf.remove(ip)

Remove host from [glob]*_hosts.rules and immediately remove rule from firewall

CLI Example:

salt '*' apf.remove 1.2.3.4

salt.modules.apf.running()

Check apf status

CLI Example:

salt '*' apf.running