projects
/
mirror
/
dsa-puppet.git
/ history
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
Mask openipmi service on dell hosts
[mirror/dsa-puppet.git]
/
modules
/
ferm
/
2019-09-07
Peter Palfrader
stop using virtual resources for ferm::rule
tree
|
commitdiff
2019-09-07
Peter Palfrader
ssh restrict dns geo and dns primary hosts
tree
|
commitdiff
2019-09-07
Peter Palfrader
no longer need to manually whitelist adayevskaya on...
tree
|
commitdiff
2019-09-07
Peter Palfrader
gitolite pushes puppetmaster
tree
|
commitdiff
2019-09-07
Peter Palfrader
make puppetmaster a role included via hiera
tree
|
commitdiff
2019-09-07
Peter Palfrader
Move adayevskaya from bm to manda
tree
|
commitdiff
2019-08-30
Peter Palfrader
remove olin from bmdb1 access
tree
|
commitdiff
2019-08-28
Aurelien Jarno
Fix CSAIL IPv6 subnet
tree
|
commitdiff
2019-08-28
Aurelien Jarno
ferm: drop FREEBSD_SSH_ACCESS
tree
|
commitdiff
2019-08-28
Aurelien Jarno
ferm: add syncproxy.na.debian.org IPv6
tree
|
commitdiff
2019-08-22
Peter Palfrader
move syslog ferm into syslog role
tree
|
commitdiff
2019-07-07
Peter Palfrader
geo ferm
tree
|
commitdiff
2019-07-07
Peter Palfrader
geo ferm
tree
|
commitdiff
2019-07-07
Peter Palfrader
fw on kaufmann
tree
|
commitdiff
2019-07-07
Peter Palfrader
unify v4 and v6 rules in named::primary
tree
|
commitdiff
2019-06-09
Luca Filipozzi
allow ssh access to ubc-node-arm* from ubc-bulwark...
tree
|
commitdiff
2019-05-28
Peter Palfrader
snapshotdb-manda-01: allow pg access from lw
tree
|
commitdiff
2019-05-23
Peter Palfrader
Allow snapshotdb-manda-01 to access pg on sallinen
tree
|
commitdiff
2019-04-03
Aurelien Jarno
Allow access to dak@bmdb1 from ullmann
tree
|
commitdiff
2019-04-03
Aurelien Jarno
Allow access to wanna-build@bmdb1 from respighi
tree
|
commitdiff
2019-04-02
Aurelien Jarno
Allow access to ullmann from wuiet
tree
|
commitdiff
2019-03-17
Aurelien Jarno
Decommission lully.d.o
tree
|
commitdiff
2019-01-28
Julien Cristau
add loghost-osuosl-01
tree
|
commitdiff
2019-01-02
Tollef Fog Heen
Open up some IPs for tfheen
tree
|
commitdiff
2018-12-17
Peter Palfrader
reload ferm on changes instead of restart
tree
|
commitdiff
2018-11-18
Peter Palfrader
Also restrict "ganeti/kvm host" purpose
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: sallinen
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:debsources, fix
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:debsources
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:dedup
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:bacula
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:wannabuild, remove duplicate allow...
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:wannabuild
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:dak, fix
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:dak
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:main, fix
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: bmdb1:main
tree
|
commitdiff
2018-11-13
Peter Palfrader
ferm cleanup: fasolo postgres
tree
|
commitdiff
2018-11-13
Peter Palfrader
test avoiding hardcoding addresses
tree
|
commitdiff
2018-11-13
Peter Palfrader
no more varnish on sibelius
tree
|
commitdiff
2018-11-13
Peter Palfrader
bugs-search no longer runs on sonntag
tree
|
commitdiff
2018-11-01
Julien Cristau
Drop firewall rule for pg @ sibelius
tree
|
commitdiff
2018-10-31
Peter Palfrader
unique all ip addresses
tree
|
commitdiff
2018-10-31
Peter Palfrader
Try a unique around v4addrs
tree
|
commitdiff
2018-10-30
Peter Palfrader
Move logging and related/established out of ferm.conf...
tree
|
commitdiff
2018-10-30
Peter Palfrader
move munin rules from conf.d to the rules dir, 2
tree
|
commitdiff
2018-10-30
Peter Palfrader
move munin rules from conf.d to the rules dir
tree
|
commitdiff
2018-10-30
Peter Palfrader
rename interfaces to 50-munin-interfaces
tree
|
commitdiff
2018-10-30
Peter Palfrader
merge munin_ip v4 and v6 into one rule
tree
|
commitdiff
2018-10-30
Peter Palfrader
change default ferm rule priority to 10 from 00
tree
|
commitdiff
2018-10-23
Peter Palfrader
Add a second easydns ipv4 address
tree
|
commitdiff
2018-10-16
Peter Palfrader
try a HEREdoc as the syntax checker seems to have issue...
tree
|
commitdiff
2018-10-16
Peter Palfrader
allow respighi to access udd on ullmann
tree
|
commitdiff
2018-10-16
Peter Palfrader
merge ipv4 and ipv6 rule for ullmann's dsa-postgres...
tree
|
commitdiff
2018-10-16
Peter Palfrader
allow ssh from ftpmaster to debug_mirrors
tree
|
commitdiff
2018-10-16
Peter Palfrader
fix a prefix len in dsa-postgres-udd6
tree
|
commitdiff
2018-10-10
Peter Palfrader
Start with removing some moszumanska entries (in partic...
tree
|
commitdiff
2018-08-07
Julien Cristau
Revert "allow access to pg on vittoria for dc18"
tree
|
commitdiff
2018-08-07
Julien Cristau
Revert "RT#7368: add additional IP"
tree
|
commitdiff
2018-07-31
Peter Palfrader
retire old cleanup job for ip6_ munin plugins
tree
|
commitdiff
2018-07-31
Peter Palfrader
Make sure nodeinfo['misc']['v[46]addrs'] always exists...
tree
|
commitdiff
2018-07-31
Peter Palfrader
ferm/munin: use already split v[46]addrs for munin...
tree
|
commitdiff
2018-07-29
Martin Zobel-Helas
RT#7368: add additional IP
tree
|
commitdiff
2018-07-27
Julien Cristau
allow access to pg on vittoria for dc18
tree
|
commitdiff
2018-07-17
Julien Cristau
Remove wheezy-supporting cruft
tree
|
commitdiff
2018-06-18
Julien Cristau
Update my home ip ranges yet again
tree
|
commitdiff
2018-05-29
Peter Palfrader
sallinen: retire 443->5473 dnat
tree
|
commitdiff
2018-05-28
Peter Palfrader
pg firewalling
tree
|
commitdiff
2018-05-28
Peter Palfrader
add lw07 to snapshot_web group
tree
|
commitdiff
2018-05-06
Julien Cristau
New IP ranges for jcristau
tree
|
commitdiff
2018-03-11
Peter Palfrader
There is no ferm-restart Exec to notify
tree
|
commitdiff
2018-03-06
Peter Palfrader
ferm::conf - include ferm
tree
|
commitdiff
2018-03-06
Peter Palfrader
start ferm config with a 00-init and start SSH*SOURCES...
tree
|
commitdiff
2018-03-06
Peter Palfrader
ferm::conf - merge with tor version
tree
|
commitdiff
2018-02-08
Martin Zobel-Helas
remove sgran IP range. he can hop via master if needed
tree
|
commitdiff
2018-02-02
Tollef Fog Heen
No more conntrackd in bm, so drop firewall opening
tree
|
commitdiff
2018-02-01
Martin Zobel-Helas
Merge branch 'master' of git+ssh://git2.debian.org...
tree
|
commitdiff
2018-02-01
Peter Palfrader
remove bendel/lists blackhole rules that are probably...
tree
|
commitdiff
2018-01-06
Peter Palfrader
Allow adayevskaya to ssh trigger puppetmaster/handel
tree
|
commitdiff
2018-01-04
Peter Palfrader
give sallinen pg access to sibelius
tree
|
commitdiff
2017-11-23
Julien Cristau
Add extra netnod servers to ferm
tree
|
commitdiff
2017-10-19
Luca Filipozzi
Merge branch 'master' of ssh://handel.debian.org/~...
tree
|
commitdiff
2017-10-19
Luca Filipozzi
remove custom casulana rules
tree
|
commitdiff
2017-10-18
Luca Filipozzi
always a typo
tree
|
commitdiff
2017-10-18
Luca Filipozzi
prune ssh ACLs for luca
tree
|
commitdiff
2017-10-18
Luca Filipozzi
add more casulana rules for br1
tree
|
commitdiff
2017-10-18
Luca Filipozzi
add masquerade rules for casulana virtual machines
tree
|
commitdiff
2017-10-18
Luca Filipozzi
undo casulana custom roles
tree
|
commitdiff
2017-10-17
Luca Filipozzi
fix up the custom cloud-admins rule
tree
|
commitdiff
2017-10-17
Luca Filipozzi
custom rule for cloud-builds on casaluna
tree
|
commitdiff
2017-10-03
Julien Cristau
Add syncproxy addresses to ssh whitelist
tree
|
commitdiff
2017-10-03
Julien Cristau
Restrict ssh to mirrors
tree
|
commitdiff
2017-10-01
Julien Cristau
Use postgres::backup_source for danzi's main pg cluster
tree
|
commitdiff
2017-09-29
Julien Cristau
fixup ferm rule for danzi
tree
|
commitdiff
2017-09-29
Julien Cristau
update ferm rules for postgresql@danzi
tree
|
commitdiff
2017-09-27
Julien Cristau
Revert "Restrict ssh to anycast and static mirrors"
tree
|
commitdiff
2017-09-27
Julien Cristau
Restrict ssh to anycast and static mirrors
tree
|
commitdiff
2017-09-10
Aurelien Jarno
ferm: restrict access to all buildds
tree
|
commitdiff
2017-09-05
Peter Palfrader
switch buxtehude to more puppetized pg backups
tree
|
commitdiff
2017-09-03
Peter Palfrader
firewall: Start moving vittoria over to puppetized...
tree
|
commitdiff
next