You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The problem is, that I have to run puppet twice, to get the defined changes. First run
Notice: /Stage[main]/Profile::Base::Firewall/Firewalld_zone[restricted]/ensure: created
Info: /Stage[main]/Profile::Base::Firewall/Firewalld_zone[restricted]: Scheduling refresh of Exec[firewalld::reload]
Notice: /Stage[main]/Profile::Base::Firewall/Firewalld_service[Allow SSH]/ensure: created
Info: /Stage[main]/Profile::Base::Firewall/Firewalld_service[Allow SSH]: Scheduling refresh of Exec[firewalld::reload]
Notice: /Stage[main]/Profile::Base::Firewall/Firewalld_service[Allow SNMP]/ensure: created
Info: /Stage[main]/Profile::Base::Firewall/Firewalld_service[Allow SNMP]: Scheduling refresh of Exec[firewalld::reload]
Notice: /Stage[main]/Profile::Base::Firewall/Firewalld_direct_rule[ping - icmp]/ensure: created
Info: /Stage[main]/Profile::Base::Firewall/Firewalld_direct_rule[ping - icmp]: Scheduling refresh of Exec[firewalld::reload]
Notice: /Stage[main]/Firewalld/Exec[firewalld::reload]: Triggered 'refresh' from 4 events
Notice: /Stage[main]/Firewalld/Exec[firewalld::set_default_zone]/returns: executed successfully
Second run
Info: Applying configuration version '1493303993'
Notice: /Stage[main]/Profile::Base::Firewall/Firewalld_zone[restricted]/icmp_blocks: icmp_blocks changed [] to 'redirect router-solicitation router-advertisement'
Info: /Stage[main]/Profile::Base::Firewall/Firewalld_zone[restricted]: Scheduling refresh of Exec[firewalld::reload]
Notice: /Stage[main]/Firewalld/Exec[firewalld::reload]: Triggered 'refresh' from 1 events
Notice: Applied catalog in 16.02 seconds
I played a little bit around and found a working solution in lib/puppet/provider/firewalld_zone/firewall_cmd.rb (line 25)
defcreateself.debug("Creating new zone #{@resource[:name]} with target: '#{@resource[:target]}'")execute_firewall_cmd(['--new-zone',@resource[:name]],nil)self.target=(@resource[:target])if@resource[:target]self.sources=(@resource[:sources])if@resource[:sources]self.interfaces=@resource[:interfaces]self.icmp_blocks=(@resource[:icmp_blocks])if@resource[:icmp_blocks]#<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<end
Maybe someone can check this and push the change (i am not a ruby dev :-) ).
The text was updated successfully, but these errors were encountered:
I want to create a new firewalld zone with the following code:
The problem is, that I have to run puppet twice, to get the defined changes.
First run
Second run
I played a little bit around and found a working solution in
lib/puppet/provider/firewalld_zone/firewall_cmd.rb
(line 25)Maybe someone can check this and push the change (i am not a ruby dev :-) ).
The text was updated successfully, but these errors were encountered: