Joey Boggs
2009-Feb-24 20:35 UTC
[Ovirt-devel] [PATCH] iptables update to force refresh/save
---
installer/modules/ovirt/manifests/ovirt.pp | 8 ++++++++
1 files changed, 8 insertions(+), 0 deletions(-)
diff --git a/installer/modules/ovirt/manifests/ovirt.pp
b/installer/modules/ovirt/manifests/ovirt.pp
index eccb4b2..11dd7e3 100644
--- a/installer/modules/ovirt/manifests/ovirt.pp
+++ b/installer/modules/ovirt/manifests/ovirt.pp
@@ -192,4 +192,12 @@ class ovirt::setup {
firewall_rule {"collectd": destination_port =>
'25826', protocol => 'udp'}
firewall_rule {"ntpd": destination_port => '123',
protocol => 'udp'}
+ exec{"refresh-iptables":
+ command => "/usr/local/bin/iptables-update.sh",
+ require =>
[Service["ovirt-mongrel-rails"],Service["ovirt-taskomatic"],Service["ovirt-db-omatic"]]
+ }
+ exec{"iptables-save":
+ command => "/sbin/iptables-save >
/etc/sysconfig/iptables",
+ require => Exec["refresh-iptables"]
+ }
}
--
1.6.0.6
Joey Boggs
2009-Feb-24 22:38 UTC
[Ovirt-devel] Re: [PATCH] iptables update to force refresh/save
Joey Boggs wrote:> --- > installer/modules/ovirt/manifests/ovirt.pp | 8 ++++++++ > 1 files changed, 8 insertions(+), 0 deletions(-) > > diff --git a/installer/modules/ovirt/manifests/ovirt.pp b/installer/modules/ovirt/manifests/ovirt.pp > index eccb4b2..11dd7e3 100644 > --- a/installer/modules/ovirt/manifests/ovirt.pp > +++ b/installer/modules/ovirt/manifests/ovirt.pp > @@ -192,4 +192,12 @@ class ovirt::setup { > firewall_rule {"collectd": destination_port => '25826', protocol => 'udp'} > firewall_rule {"ntpd": destination_port => '123', protocol => 'udp'} > > + exec{"refresh-iptables": > + command => "/usr/local/bin/iptables-update.sh", > + require => [Service["ovirt-mongrel-rails"],Service["ovirt-taskomatic"],Service["ovirt-db-omatic"]] > + } > + exec{"iptables-save": > + command => "/sbin/iptables-save > /etc/sysconfig/iptables", > + require => Exec["refresh-iptables"] > + } > } >pushed