W3cubDocs

/SaltStack

salt.modules.apf

Support for Advanced Policy Firewall (APF)

maintainer: Mostafa Hussein <mostafa.hussein91@gmail.com>
maturity: new
depends: python-iptables
platform: Linux

salt.modules.apf.allow(ip, port=None)

Add host (IP/FQDN) to allow_hosts.rules and immediately load new rule into firewall CLI Example:

salt '*' apf.allow 127.0.0.1

salt.modules.apf.deny(ip)

Add host (IP/FQDN) to deny_hosts.rules and immediately load new rule into firewall CLI Example:

salt '*' apf.deny 1.2.3.4

salt.modules.apf.disable()

Stop (flush) all firewall rules CLI Example:

salt '*' apf.disable

salt.modules.apf.enable()

Load all firewall rules CLI Example:

salt '*' apf.enable

salt.modules.apf.refresh()

Refresh & resolve dns names in trust rules CLI Example:

salt '*' apf.refresh

salt.modules.apf.reload()

Stop (flush) & reload firewall rules CLI Example:

salt '*' apf.reload

salt.modules.apf.remove(ip)

Remove host from [glob]*_hosts.rules and immediately remove rule from firewall CLI Example:

salt '*' apf.remove 1.2.3.4

salt.modules.apf.running()

Check apf status CLI Example:

salt '*' apf.running

© 2019 SaltStack.
Licensed under the Apache License, Version 2.0.
https://docs.saltstack.com/en/latest/ref/modules/all/salt.modules.apf.html