1 files changed, 20 insertions, 0 deletions
diff --git a/modules/base_installation/manifests/firewall.pp b/modules/base_installation/manifests/firewall.pp
new file mode 100644
index 0000000..12eeac2
--- /dev/null
+++ b/modules/base_installation/manifests/firewall.pp
@@ -0,0 +1,20 @@
+class base_installation::firewall inherits base_installation {
+  ensure_packages(["whois"], { 'install_options' => '--asdeps' })
+  class { 'fail2ban':
+    logtarget => 'SYSLOG',
+    backend   => 'systemd'
+  }
+  fail2ban::jail { 'sshd':
+    backend  => 'systemd',
+    port     => 'ssh',
+    filter   => 'sshd',
+    maxretry => 10,
+    bantime  => 86400,
+    logpath  => '',
+    order    => 10
+  }
+  contain "fail2ban"
+}

diff --git a/modules/base_installation/manifests/firewall.pp b/modules/base_installation/manifests/firewall.pp new file mode 100644 index 0000000..12eeac2 --- /dev/null +++ b/modules/base_installation/manifests/firewall.pp
@@ -0,0 +1,20 @@
	1	class base_installation::firewall inherits base_installation {
	2	ensure_packages(["whois"], { 'install_options' => '--asdeps' })
	3
	4	class { 'fail2ban':
	5	logtarget => 'SYSLOG',
	6	backend => 'systemd'
	7	}
	8
	9	fail2ban::jail { 'sshd':
	10	backend => 'systemd',
	11	port => 'ssh',
	12	filter => 'sshd',
	13	maxretry => 10,
	14	bantime => 86400,
	15	logpath => '',
	16	order => 10
	17	}
	18
	19	contain "fail2ban"
	20	}