projects
/
mirror
/
dsa-puppet.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
new donizetti volumes
[mirror/dsa-puppet.git]
/
modules
/
ferm
/
files
/
ferm.conf
diff --git
a/modules/ferm/files/ferm.conf
b/modules/ferm/files/ferm.conf
index
5b38e34
..
5f77ce4
100644
(file)
--- a/
modules/ferm/files/ferm.conf
+++ b/
modules/ferm/files/ferm.conf
@@
-63,4
+63,7
@@
domain (ip ip6) {
jump log_or_drop;
}
}
jump log_or_drop;
}
}
+
+@hook post "umask 0177; iptables-save | sed -e 's/\[.*//' -e 's/^#.*//' | sha256sum > /var/run/iptables-ferm.checksum";
+@hook post "umask 0177; ip6tables-save | sed -e 's/\[.*//' -e 's/^#.*//' | sha256sum > /var/run/ip6tables-ferm.checksum";
# vim:set et:
# vim:set et: