Forge Home

xinetd

Configures xinetd and exposes the xinetd::service definition for adding new services.

3,091,362 downloads

104,522 latest version

4.5 quality score

We run a couple of automated
scans to help you access a
module's quality. Each module is
given a score based on how well
the author has formatted their
code and documentation and
modules are also checked for
malware using VirusTotal.

Please note, the information below
is for guidance only and neither of
these methods should be considered
an endorsement by Puppet.

Support the Puppet Community by contributing to this module

You are welcome to contribute to this module by suggesting new features, currency updates, or fixes. Every contribution is valuable to help ensure that the module remains compatible with the latest Puppet versions and continues to meet community needs. Complete the following steps:

  1. Review the module’s contribution guidelines and any licenses. Ensure that your planned contribution aligns with the author’s standards and any legal requirements.
  2. Fork the repository on GitHub, make changes on a branch of your fork, and submit a pull request. The pull request must clearly document your proposed change.

For questions about updating the module, contact the module’s author.

Version information

  • 3.3.0 (latest)
  • 3.2.0
  • 3.1.0
  • 3.0.0
  • 2.0.0
  • 1.5.0
  • 1.4.0
  • 1.3.1
  • 1.3.0
  • 1.2.0
  • 1.1.0
released May 28th 2019
This version is compatible with:
  • Puppet Enterprise 2019.8.x, 2019.7.x, 2019.5.x, 2019.4.x, 2019.3.x, 2019.2.x, 2019.1.x, 2019.0.x, 2018.1.x, 2017.3.x, 2017.2.x, 2017.1.x, 2016.5.x, 2016.4.x
  • Puppet >= 4.7.1 < 7.0.0

Start using this module

  • r10k or Code Manager
  • Bolt
  • Manual installation
  • Direct download

Add this module to your Puppetfile:

mod 'puppetlabs-xinetd', '3.3.0'
Learn more about managing modules with a Puppetfile

Add this module to your Bolt project:

bolt module add puppetlabs-xinetd
Learn more about using this module with an existing project

Manually install this module globally with Puppet module tool:

puppet module install puppetlabs-xinetd --version 3.3.0

Direct download is not typically how you would use a Puppet module to manage your infrastructure, but you may want to download the module in order to inspect the code.

Download

Documentation

puppetlabs/xinetd — version 3.3.0 May 28th 2019

xinetd

Build Status

This is the xinetd module.

Overview

This module configures xinetd, and exposes the xinetd::service definition for adding new services.

Class: xinetd

Sets up the xinetd daemon. Has options for you in case you have specific package names and service needs.

Parameters

  • confdir
  • conffile
  • package_name
  • service_name
  • service_restart
  • service_status
  • service_hasrestart
  • service_hasstatus

Additionally, all the global defaults in the main xinetd.conf can be set. By default they are not set, allowing the internal xinetd defaults to be used: (see man xinetd.conf for full descriptions)

  • enabled - Takes a list of service ID's to enable.
  • disabled - Takes a list of service ID's to disable.
  • log_type - Determines where the service log output is sent.
  • log_on_failure - Determines what information is logged when a server cannot be started.
  • log_on_success - Determines what information is logged when a server is started and when that server exits.
  • no_access - Determines the remote hosts to which the particular service is unavailable.
  • only_from - Determines the remote hosts to which the particular service is available.
  • max_load - Takes a floating point value as the load at which the service will stop accepting connections.
  • cps - Takes two numbers to set a rate limit for incoming connections. The first number is the number of connections per second at which the service is disabled. The second number is the time in seconds before the service will be enabled again.
  • instances - Determines the number of servers that can be simultaneously active for a service (the default is no limit).
  • per_source - This specifies the maximum instances of this service per source IP address.
  • bind - Allows a service to be bound to a specific interface on the machine.
  • mdns - On systems that support mdns registration of services (currently only Mac OS X), this will enable or disable registration of the service.
  • v6only - Set to yes to use IPv6 only.
  • passenv - The value of this attribute is a list of environment variables from xinetd's environment that will be passed to the server.
  • env - The value of this attribute is a list of environment variables that will be added to the environment before starting a server.
  • groups - If the groups attribute is set to "yes", then the server is executed with access to the groups that the server's effective UID has access to.
  • umask - Sets the inherited umask for the service.
  • banner - Takes the name of a file to be splatted at the remote host when a connection to that service is established.
  • banner_fail - Takes the name of a file to be splatted at the remote host when a connection to that service is denied.
  • banner_success - Takes the name of a file to be splatted at the remote host when a connection to that service is granted.

Definition: xinetd::service

Sets up a xinetd service. All parameters match up with xinetd.conf(5) man page.

Parameters:

  • server - optional - determines the program to execute for this service (either this or redirect is required)
  • redirect - optional - ip or hostname and port of the target service (either this or server is required)
  • port - optional - determines the service port (required if service is not listed in /etc/services)
  • cps - optional
  • flags - optional
  • per_source - optional
  • server_args - optional
  • disable - optional - defaults to "no"
  • socket_type - optional - defaults to "stream"
  • protocol - optional - defaults to "tcp"
  • user - optional - defaults to "root"
  • group - optional - defaults to "root"
  • use_default_group - optional - set to "false" to prevent using the OS specific default group for the service, defaults to "true"
  • instances - optional - defaults to "UNLIMITED"
  • wait - optional - based on $protocol will default to "yes" for udp and "no" for tcp
  • service_type - optional - type setting in xinetd
  • nice - optional - integer between -20 and 19, inclusive.

Either the server or the redirect parameter must be set.

Sample Usage

xinetd::service { 'tftp':
  port        => '69',
  server      => '/usr/sbin/in.tftpd',
  server_args => '-s /var/lib/tftp/',
  socket_type => 'dgram',
  protocol    => 'udp',
  cps         => '100 2',
  flags       => 'IPv4',
  per_source  => '11',
}
xinetd::service { 'ssh-tunnel-host_example_com':
  port         => '2222',
  redirect     => 'host.example.com 22',
  flags        => 'REUSE',
  service_type => 'UNLISTED',
  bind         => "${::ipaddress_eth1}",
  only_from    => '10.130.50.174',
}

Supported OSes

Supports Debian, FreeBSD, Suse, RedHat, and Amazon Linux OS Families.