search for: aqueduct

...p an IPSec protected GRE tunnel with a Cisco router. I believe the IPSec association is up, however I cannot move traffic over the tunnel. It is not clear how to integrate the tunnel interface (gre1) with firewall-cmd; adding the interface to trusted does not appear to 'stick'. [root at aqueduct ~]# firewall-cmd --add-interface=gre1 --zone=trusted The interface is under control of NetworkManager and already bound to 'trusted' The interface is under control of NetworkManager, setting zone to 'trusted'. [root at aqueduct ~]# firewall-cmd --list-all --zone=trusted trusted ? ta...

Hi All, I noticed that a few years back, someone from Puppet Labs (well Reductive Labs at that time) reached out to the openscap list in an attempt to collaborate on puppet modules: https://www.redhat.com/archives/open-scap-list/2010-March/msg00000.html it seems like the aqueduct project is/was working on a similar ''harden through puppet modules'' approach: https://fedorahosted.org/aqueduct/ but their site seems to have not been updated much in the past 10 months. Is anyone currently working with either of these, or something else in combination with pupp...

...fic table. Manually I do a: ip route add default via 192.168.1.6 dev ens192 table pods Rules load automatically via the /etc/sysconfig/network-scripts/rules- {interface} files. Routes added to /etc/sysconfig/network- scripts/routes-{interface} are always added to the default policy. [root at aqueduct rc.d]# ip rule 0: from all lookup local? 32763: from 192.168.65.0/24 lookup pods? 32764: from 192.168.41.0/24 lookup pods? 32765: from 192.168.43.0/24 lookup pods? 32766: from all lookup main? 32767: from all lookup default? -- Adam Tauno Williams <mailto:awilliam at whitemice.org> GPG D95E...

I discovered that a number of our STIG Puppet modules are failing. I am thinking its because the code is wrong because when I make a quick chance to the actual code being used, then the code actually works as intended. STIG Puppet Code Repository: https://fedorahosted.org/aqueduct/browser/trunk/compliance/Puppet/STIG/rhel5/RHEL-5-Unix-Checklist/base/dev/rhel5/puppet/trunk/etc/puppet/modules/stig Puppet code being executed: class gen002640 { ## (GEN002640: CAT II) (Previously - G092) The SA will ensure logon capability ## to default system accounts (e.g., b...

[ https://www.centos.org/search.php?query=atomicorp&mid=30&action=showall&andor=AND forum search] returns a 404. Can the forum search https://www.centos.org/forums/search.php? be used with parameters that will provide the supporting material for the warning "Many CentOS users have had problems after enabling this repo"? -------------- next part -------------- An HTML