modules/ferm/manifests/aql.pp

   1 class ferm::aql {
   2         @ferm::rule { 'dsa-drop-multicast':
   3                 domain      => 'ip',
   4                 description => 'drop multicast traffic to avoid triggering protection',
   5                 table       => 'filter',
   6                 chain       => 'OUTPUT',
   7                 rule        => 'destination 224.0.0.0/24 jump log_or_drop'
   8         }
   9 }
  10