|
OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below. |
|
Thread Tools | Display Modes |
|
|||
How to deploy pf.conf to multiple machines?
I've got two machines for firewalling. It's good for redundancy but tedious in management:
- edit pf.conf on machine1 - pfctl -f pf.conf - scp pf.conf machine2:/etc/ - ssh machine2 "pfctl -f /etc/pf.conf" What software do openbsd folks use for config management? I've heard good things about ansible but that requires python on the managed machine. I don't want to install any packages on the firewall. |
|
||||
Take a look at rdist(1). Disclaimer: I've never used it. My firewalls do not have identical PF configurations, even though they use carp(4) for redundancy and pfsync(4) for failover. This is because they each provide a different mix of additional application services.
Last edited by jggimi; 5th July 2014 at 02:27 PM. Reason: corrected man page chapter |
|
|||
Puppet can be found in packages. I can't comment further on it as I don't use it.
Quote:
|
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Security Joomla sites misused to deploy malware | J65nko | News | 0 | 12th December 2012 01:33 PM |
Rsync to compare two Synology - NAS machines? | Broodjegehaktmetmayo | Other BSD and UNIX/UNIX-like | 0 | 24th June 2012 12:02 PM |
Starting ntpd in cron for machines not always connected to the Net | J65nko | Guides | 1 | 28th November 2009 03:49 AM |
dhclient.conf: multiple fixed-address statements | xiphias | FreeBSD General | 14 | 19th June 2008 06:42 AM |
What do do with these machines? | billousek | Off-Topic | 8 | 11th June 2008 01:04 PM |