iptables and number of ports

28 views
Skip to first unread message

mar...@gamingrealms.com

unread,
Jul 31, 2014, 12:23:11 PM7/31/14
to puppet...@googlegroups.com
Hi,

I'm trying to manage iptables with 'puppetlabs/firewall/1.0.2'. I use hiera to pass arguments to the firewall module like that:

'032 accept dns traffic':
    source: '0.0.0.0/0'
    dport: '53'

My problem is that after applying the configuration to a node iptables -nL shows:

ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0            multiport dports 53 /* 032 accept dns traffic */

As you can see even though I passed only one port iptables is set to multiports. Any idea how to fix that?

Trevor Vaughan

unread,
Jul 31, 2014, 6:57:51 PM7/31/14
to puppet...@googlegroups.com
This is fine, multiport can handle one or more ports and is a safe generic way to handle this situation.

Trevor


--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/79ca28ca-b882-463f-bd9a-d93b9623bf6b%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.



--
Trevor Vaughan
Vice President, Onyx Point, Inc
(410) 541-6699
tvau...@onyxpoint.com

-- This account not approved for unencrypted proprietary information --

mar...@gamingrealms.com

unread,
Aug 1, 2014, 4:20:06 AM8/1/14
to puppet...@googlegroups.com
That is was I thought. Thanks for help.
Reply all
Reply to author
Forward
0 new messages