Puppet Class: nftables::rules::ssdp

Defined in:
manifests/rules/ssdp.pp

Summary

allow incoming SSDP

Overview

Parameters:

  • ipv4 (Boolean) (defaults to: true)

    Allow SSDP over IPv4

  • ipv6 (Boolean) (defaults to: true)

    Allow SSDP over IPv6

See Also:



9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
 
# File 'manifests/rules/ssdp.pp', line 9

class nftables::rules::ssdp (
  Boolean $ipv4 = true,
  Boolean $ipv6 = true,
) {
  if $ipv4 {
    nftables::rule { 'default_in-ssdp_v4':
      content => 'ip daddr 239.255.255.250 udp dport 1900 accept comment "accept SSDP"',
    }
  }
  if $ipv6 {
    nftables::rule { 'default_in-ssdp_v6':
      content => 'ip6 daddr {ff02::c, ff05::c} udp dport 1900 accept comment "accept SSDP"',
    }
  }
}