We are using the puppetlabs-firewall (https://forge.puppetlabs.com/puppetlabs/firewall) to manage our firewall rules. We were having issues with the firewall rules causing the client to lose it''s connection to the pupeptmaster during it''s initial run, so we followed the advise in this issue thread: https://github.com/puppetlabs/puppetlabs-firewall/issues/239#issuecomment-26443579 (you can see my comment last on that thread). However whilst the new puppet client will configure successfully it does not apply any of the "pre" rules at all, even on successive runs. Here is the firewall related stuff from our site.pp: class firewall-myrules { Firewall { before => Class[''my-firewall-base::post''], require => Class[''my-firewall-base::pre''], } class { [''my-firewall-base::pre'', ''firewall'', ''my-firewall-base::post'']: } -> resources { ''firewall'': purge => true } } Any ideas why this might be happening? It''s probably the last piece we need to sort in order to start using this in production. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscribe@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/bd9d3b37-6cad-4d7f-a612-19afe06a13a1%40googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.