Re: How to manage a firewall script with minor tweaks for different machines?

To: debian-user@lists.debian.org
Subject: Re: How to manage a firewall script with minor tweaks for different machines?
From: deloptes <deloptes@gmail.com>
Date: Sat, 12 Jun 2021 18:22:23 +0200
Message-id: <[🔎] sa2mvv$11sc$1@ciao.gmane.io>
Reply-to: deloptes@gmail.com
References: <[🔎] sm0a6nvkr4l.fsf@lakka.kapsi.fi>

Anssi Saari wrote:

> I also need some way of pushing these firewall scripts and other config
> stuff over to the machines too. It's not a huge network but manually
> logging into each machine, overwriting /etc/nftables.conf and restarting
> nftables.service is a pain. cdist looks interesting and simple, does
> anyone have experience with it?

I have been somewhere there 20y ago. There was one tool cfengine then came
many of the kind puppet, ansible etc.

regarding the FW I have also had a "simple" firewall script, but few years
ago I moved to shorewall

In any case ssh can populate your script and do restart easily. however
think about rollback scenarios ;-)

regards

Reply to:

References:
- How to manage a firewall script with minor tweaks for different machines?
  - From: Anssi Saari <as@sci.fi>

Prev by Date: How to manage a firewall script with minor tweaks for different machines?
Next by Date: Re: cannot mount smartphone anymore
Previous by thread: How to manage a firewall script with minor tweaks for different machines?
Next by thread: Re: How to manage a firewall script with minor tweaks for different machines?
Index(es):
- Date
- Thread