add the option to specify the family per rule to support ipv6 (#3) Closes: #2 * add the option to specify the family per rule to support ipv6 * include policy updates for ipv6 * update documentation to mention ipv6 * Make ipv6 optional; remove spurious tabs from the readme. * set ipv6 policies only if ipv6 is enabled on the host and not explicitly turned off for this service

commit: 3bee76dcd66068a040d06e293489535a1cf5d137 [log] [tgz]
author: Dennis van Dok <dvandok@gmail.com> Tue Feb 07 15:22:23 2017 +0100
committer: Filip Pytloun <filip@pytloun.cz> Tue Feb 07 15:22:23 2017 +0100
tree: 48c5a99b05020e6debc57e57138a7b1b132c351d
parent: b817b3596f8bfa512f30b99a91bee64869ac9c7d [diff] [blame]
diff --git a/README.rst b/README.rst
index 5a046d8..5024293 100644
--- a/README.rst
+++ b/README.rst

@@ -22,6 +22,7 @@
     parametetrs:
       iptables:
         service:
+          enabled: True
           chain:
             INPUT:
               rules:
@@ -88,6 +89,24 @@
                   source_network: 192.168.1.0/24
                   jump: ACCEPT
 
+IPv6 is supported as well
+
+.. code-block:: yaml
+
+    parameters:
+      iptables:
+        service:
+          enabled: True
+          ipv6: True
+          chain:
+            INPUT:
+              rules:
+                - protocol: tcp
+                  family: ipv6
+                  destination_port: 22
+                  source_network: 2001:DB8::/32
+                  jump: ACCEPT
+
 Read more
 =========
commit	3bee76dcd66068a040d06e293489535a1cf5d137	[log] [tgz]
author	Dennis van Dok <dvandok@gmail.com>	Tue Feb 07 15:22:23 2017 +0100
committer	Filip Pytloun <filip@pytloun.cz>	Tue Feb 07 15:22:23 2017 +0100
tree	48c5a99b05020e6debc57e57138a7b1b132c351d
parent	b817b3596f8bfa512f30b99a91bee64869ac9c7d [diff] [blame]