Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move conntrack rules from global to INPUT and OUTPUT #14

Merged
merged 1 commit into from
Nov 19, 2020
Merged

Move conntrack rules from global to INPUT and OUTPUT #14

merged 1 commit into from
Nov 19, 2020

Conversation

nbarrientos
Copy link
Collaborator

@nbarrientos nbarrientos commented Nov 19, 2020
edited
Loading

This patch partly implements the changes discussed in #9 by moving away the conntrack related rules from the global chain to INPUT and OUTPUT. There's a new parameter allowing not having these rules.

@keachi
Copy link
Collaborator

keachi commented Nov 19, 2020

lgtm

@duritong duritong merged commit 21d0496 into voxpupuli:master Nov 19, 2020
traylenator referenced this pull request in traylenator/puppet-nftables Nov 20, 2020
@traylenator
Correct bad merge
8b97e6a 
There was a bad merge between

* https://github.com/duritong/puppet-nftables/pull/13
* https://github.com/duritong/puppet-nftables/pull/14

correct tests.
@traylenator traylenator mentioned this pull request Nov 20, 2020
Merged
@keachi keachi mentioned this pull request Nov 29, 2020
Merged
@traylenator traylenator added the enhancement New feature or request label Dec 10, 2020
figless pushed a commit to figless/puppet-nftables that referenced this pull request Aug 25, 2021
@nbarrientos
Squashed 'code/' changes from 9e5b8bf..a5f5fb1
bb4907e 
a5f5fb1 Merge pull request voxpupuli#13 from traylenator/comment
21d0496 Merge pull request voxpupuli#14 from cernops/ct_away
7b14f6d Merge pull request voxpupuli#6 from traylenator/afs
ea96d5d Move ct rules from global to INPUT and OUTPUT
61f03b4 Switch $order$fragmenta/b to $order-$fragment-a/b
e53053c Add comments for all the nftable::rules entries
9785cd5 lint fix
215aee1 Add kerberos out and openafs_client out
f3f2870 Add rules for afs3_callback

git-subtree-dir: code
git-subtree-split: a5f5fb1
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@duritong duritong duritong approved these changes

@keachi keachi keachi approved these changes

Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@nbarrientos @keachi @duritong @traylenator