Shorewall might be a bit more popular than Cfengine. We know about 6 links to it since March 2021 and only 5 links to Cfengine. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Your admin uses cfengine for example https://cfengine.com/. - Source: Hacker News / 25 days ago
Another oldie but goodie is cfengine: https://cfengine.com/. Source: over 1 year ago
I'm using rudder (https://www.rudder.io/), it's based on cfengine (https://cfengine.com/). But this is more enterprise ready, you'll be fine with lightweight ansible. Nice thing is, that rudder ensures compliance by periodically executing all defined rules on all endpoints. Source: over 2 years ago
CFEngine Ansible Chef Puppet Saltstack. - Source: dev.to / about 3 years ago
Automating mutable systems is often referred to as Configuration Management, and leverages tools such as Cfengine, Puppet, Chef, or Ansible. This tooling uses principles based on the concepts of target state, idempotence, and somewhat related to Mark Burgess’ Promise Theory. Configuration Management aims to make the system convergent, by running a tool on a regular basis, in order to resynchronize the system with... - Source: dev.to / about 3 years ago
All mentioned items have side-channel borked firewall and route rules in the past. Some bugs intermittently silently block local daemon instances from (re)loading like magic (some bugs only happen when the system is brought up). If your daily tasks include something less borked, than consider yourself very lucky you live without systemd. If I recall, ufw was intended for simple workstation rule sets. Personally,... - Source: Hacker News / 9 months ago
I've been using Shorewall for the last decade or so on everything from custom OpenWRT firewall/gateway solutions to servers running Debian or Ubuntu. It's great software that makes managing iptables/netfilter a breeze. Alas after many years, Mr. Eastep has retired and it doesn't appear the project is maintained by a new person or team. Source: about 1 year ago
Shorewall (https://shorewall.org/) can do the job easily. Source: over 1 year ago
Despite administrating Linux machines since 1994, I have never really looked closely at iptables because I was using shorewall and the briefly firehol. Source: over 1 year ago
You should just use https://shorewall.org/. Source: almost 3 years ago
Ansible - Radically simple configuration-management, application deployment, task-execution, and multi-node orchestration engine
ufw - Ufw stands for Uncomplicated Firewall, and is program for managing a netfilter firewall.
Puppet Enterprise - Get started with Puppet Enterprise, or upgrade or expand.
YaST - YaST is the installation and configuration tool for https://alternativeto.
Chef - Automation for all of your technology. Overcome the complexity and rapidly ship your infrastructure and apps anywhere with automation.
ferm - ferm is a tool to maintain complex firewalls, without having the trouble to rewrite the complex...