starlingx
/
config
Code Issues Proposed changes

Merge "Initial firewall config causes temporary packet loss"

This commit is contained in:
Zuul 2019-02-05 15:49:41 +00:00 committed by Gerrit Code Review
parent 57d966d158 7c263d19b1
commit 15e100430f
2 changed files with 7 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
puppet-manifests/centos/build_srpm.data
View File

@ -1,2 +1,2 @@
SRC_DIR="src" SRC_DIR="src"
TIS_PATCH_VER=78 TIS_PATCH_VER=79

12
puppet-manifests/src/modules/platform/manifests/firewall.pp
View File

@ -298,38 +298,38 @@ class platform::firewall::oam (
version => 'ipv4', version => 'ipv4',
} }
platform::firewall::common { 'platform:firewall:ipv6': -> platform::firewall::common { 'platform:firewall:ipv6':
interface => $interface_name, interface => $interface_name,
version => 'ipv6', version => 'ipv6',
} }
platform::firewall::services { 'platform:firewall:services': -> platform::firewall::services { 'platform:firewall:services':
version => $version, version => $version,
} }
# Set default table policies # Set default table policies
firewallchain { 'INPUT:filter:IPv4': -> firewallchain { 'INPUT:filter:IPv4':
ensure => present, ensure => present,
policy => drop, policy => drop,
before => undef, before => undef,
purge => false, purge => false,
} }
firewallchain { 'INPUT:filter:IPv6': -> firewallchain { 'INPUT:filter:IPv6':
ensure => present, ensure => present,
policy => drop, policy => drop,
before => undef, before => undef,
purge => false, purge => false,
} }
firewallchain { 'FORWARD:filter:IPv4': -> firewallchain { 'FORWARD:filter:IPv4':
ensure => present, ensure => present,
policy => drop, policy => drop,
before => undef, before => undef,
purge => false, purge => false,
} }
firewallchain { 'FORWARD:filter:IPv6': -> firewallchain { 'FORWARD:filter:IPv6':
ensure => present, ensure => present,
policy => drop, policy => drop,
before => undef, before => undef,