beamin melbin
2011-Nov-28 05:02 UTC
[Puppet Users] Using firewall module, how do I clear iptables before rules are applied?
I am currently using Puppet''s firewall module:
http://forge.puppetlabs.com/puppetlabs/firewall
I am trying to have Puppet flush iptables before it applies firewall
rules. I tried the following:
exec { ''clear-firewall'':
command => ''/sbin/iptables -F'',
refreshonly => true,
}
Firewall {
subscribe => Exec[''clear-firewall''],
notify => Exec[''persist-firewall''],
}
So far, it has not worked. Can anyone suggest or know of another
method I should try?
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscribe@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
Steve Traylen
2011-Nov-28 17:18 UTC
Re: [Puppet Users] Using firewall module, how do I clear iptables before rules are applied?
On Mon, Nov 28, 2011 at 6:02 AM, beamin melbin <belminf@gmail.com> wrote:> I am currently using Puppet''s firewall module: > > http://forge.puppetlabs.com/puppetlabs/firewall > > I am trying to have Puppet flush iptables before it applies firewall > rules. I tried the following:Are you trying to remove all rules that are not configured with puppet? In which case the following will do but I''m not positive that is you want? resources { ''firewall'': purge => true } -- Steve Traylen -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
beamin melbin
2011-Nov-28 17:44 UTC
[Puppet Users] Re: Using firewall module, how do I clear iptables before rules are applied?
That is exactly what I wanted. Thank you Steve! On Nov 28, 12:18 pm, Steve Traylen <steve.tray...@cern.ch> wrote:> On Mon, Nov 28, 2011 at 6:02 AM, beamin melbin <belm...@gmail.com> wrote: > > I am currently using Puppet''s firewall module: > > >http://forge.puppetlabs.com/puppetlabs/firewall > > > I am trying to have Puppet flush iptables before it applies firewall > > rules. I tried the following: > > Are you trying to remove all rules that are not configured with puppet? > In which case the following will do but I''m not positive that is you want? > > resources { ''firewall'': > purge => true > > } > > -- > Steve Traylen-- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscribe@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
Reasonably Related Threads
- How do I require a resource in a definition based on an array parameter?
- How can I have a defined resource depend on a resource that is not in the global scope?
- puppetlabs-firewall: source param as array
- SteveTraylen - new member of the configmanagementsig
- pxelinux.0 fails when ip address matchs nnn.nnn.nnn.n0n.