Managing system firewalls is a repetitive and an error prone task. These sorts of tasks are great for management by Puppet. Using the puppetlabs/firewall module, we can implement system level firewall services with ease and with configuration, that is easily read and audited.

In this last chapter, we learned how to use the firewall type to manage our firewalls. Using the parameters of the type, we can manage all the aspects of the iptables configuration.

We then learned a design pattern that allowed us to ensure that our rules got applied in a consistent order, and also ensure that common rules are applied to all hosts in our environment.

Finally, we learned a pattern that allowed us to build reusable modules and attach the firewall configuration ...