search for: aqueduct

Displaying 5 results from an estimated 5 matches for "aqueduct".

2018 Apr 24
1
Libreswan IPSec Protected GRE Tunnel & firewall-cmd
...p an IPSec protected GRE tunnel with a Cisco router. I believe the IPSec association is up, however I cannot move traffic over the tunnel. It is not clear how to integrate the tunnel interface (gre1) with firewall-cmd; adding the interface to trusted does not appear to 'stick'. [root at aqueduct ~]# firewall-cmd --add-interface=gre1 --zone=trusted The interface is under control of NetworkManager and already bound to 'trusted' The interface is under control of NetworkManager, setting zone to 'trusted'. [root at aqueduct ~]# firewall-cmd --list-all --zone=trusted trusted ? ta...
2013 Jan 27
0
puppet + openscap / hardening
Hi All, I noticed that a few years back, someone from Puppet Labs (well Reductive Labs at that time) reached out to the openscap list in an attempt to collaborate on puppet modules: https://www.redhat.com/archives/open-scap-list/2010-March/msg00000.html it seems like the aqueduct project is/was working on a similar ''harden through puppet modules'' approach: https://fedorahosted.org/aqueduct/ but their site seems to have not been updated much in the past 10 months. Is anyone currently working with either of these, or something else in combination with pupp...
2018 May 15
2
Persisting Routes In A Routing Table Other Than The Default
...fic table. Manually I do a: ip route add default via 192.168.1.6 dev ens192 table pods Rules load automatically via the /etc/sysconfig/network-scripts/rules- {interface} files. Routes added to /etc/sysconfig/network- scripts/routes-{interface} are always added to the default policy. [root at aqueduct rc.d]# ip rule 0: from all lookup local? 32763: from 192.168.65.0/24 lookup pods? 32764: from 192.168.41.0/24 lookup pods? 32765: from 192.168.43.0/24 lookup pods? 32766: from all lookup main? 32767: from all lookup default? -- Adam Tauno Williams <mailto:awilliam at whitemice.org> GPG D95E...
2012 Jun 04
1
Need help resolving bad Puppet module entries for STIG
I discovered that a number of our STIG Puppet modules are failing. I am thinking its because the code is wrong because when I make a quick chance to the actual code being used, then the code actually works as intended. STIG Puppet Code Repository: https://fedorahosted.org/aqueduct/browser/trunk/compliance/Puppet/STIG/rhel5/RHEL-5-Unix-Checklist/base/dev/rhel5/puppet/trunk/etc/puppet/modules/stig Puppet code being executed: class gen002640 { ## (GEN002640: CAT II) (Previously - G092) The SA will ensure logon capability ## to default system accounts (e.g., b...
2014 Dec 13
3
CentOS forum search link in http://wiki.centos.org/AdditionalResources/Repositories under Atomic Repo
[ https://www.centos.org/search.php?query=atomicorp&mid=30&action=showall&andor=AND forum search] returns a 404. Can the forum search https://www.centos.org/forums/search.php? be used with parameters that will provide the supporting material for the warning "Many CentOS users have had problems after enabling this repo"? -------------- next part -------------- An HTML