Ask Your Question

looking for advice on firewall configuration via puppet

asked 2016-01-08 07:54:31 -0600

busyadmin gravatar image

updated 2016-01-08 10:20:45 -0600

I'm trying to bring some sanity to the network environment I work in (long story). We have hundreds on linux hosts without any centralized management or control of configuration. I want to use puppet to manage firewall configurations as an initial starting point, I realize I could use individual node definitions to apply a policy to each host but that isn't much better than what we're doing already.

Has anyone dealt with this issue before or do you have suggestions on how I might group systems together to apply a specific firewall policy e.g. internet facing, web server, e-mail server, etc. ?

I've just deployed Satellite 6.1 so I'd like to integrate puppet into it.

edit retag flag offensive close merge delete

2 Answers

Sort by ยป oldest newest most voted

answered 2016-01-09 07:52:39 -0600

jiada gravatar image

Perhaps the 'roles and profiles' design pattern might be a help. Craig Dunn does a great presentation on it here.

edit flag offensive delete link more

answered 2016-01-11 10:52:44 -0600

slk gravatar image

Look through this as well - and a module to manipulate iptables -

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower


Asked: 2016-01-08 07:54:31 -0600

Seen: 181 times

Last updated: Jan 11 '16