Resource Type: xt_recent

Defined in:

lib/puppet/type/xt_recent.rb

Providers:

set

Overview

Sets the various options on the running xt_recent kernel module.

If the module needs to be loaded, attempts to load the module.

Properties

• ip_list_gid (defaults to: 0)

  Numerical GID for ownership of /proc/net/xt_recent/* files.

  Supported values:

  • %r{^\d+$}
• ip_list_hash_size (defaults to: 0)

  Hash table size. 0 means to calculate it based on ip_list_tot.

  Supported values:

  • %r{^\d+$}
• ip_list_perms (defaults to: 0640)

  Permissions for /proc/net/xt_recent/* files.

  Supported values:

  • %r{^[0-7]{4}$}
• ip_list_tot (defaults to: 100)

  The number of addresses remembered per table. This effectively becomes the maximum size of your block list. Be aware that more addresses means more load on your system.

  Supported values:

  • %r{^\d+$}
• ip_list_uid (defaults to: 0)

  Numerical UID for ownership of /proc/net/xt_recent/* files.

  Supported values:

  • %r{^\d+$}
• ip_pkt_list_tot (defaults to: 20)

  The number of packets per address remembered.

  Supported values:

  • %r{^\d+$}

Parameters

• name (namevar)

  The path to the xt_recent variables to be manipulated

• provider

  The specific backend to use for this ‘xt_recent` resource. You will seldom need to specify this — Puppet will usually discover the appropriate provider for your platform.