7.1.11.6. Information Flow Enforcement¶

The pupmod module explicitly opens up ports 8140 and 8141 using IPTables rules. Port 8140 is the puppet master port and 8141 is the certificate authority port. The connecting source IPs are limited to the value of $trusted_nets, which for most installs is the local network.

References: AC-4 : INFORMATION FLOW ENFORCEMENT

Read the Docs v: 6.2.0-0

Versions: latest; stable; 6.2.0-0; 6.1.0-0; 6.1.0-rc1; 6.0.0-0; 6.0.0-beta; 5.2.1-0; 5.2.0-0; 5.1.0-3; 5.1.0-2; 5.1.0-1; 5.1.0-0; 4.3.1-0; 4.3.0-0; 4.2.0-2; 4.2.0-1; 4.2.0-0; master

Downloads

On Read the Docs: Project Home; Builds

Free document hosting provided by Read the Docs.