Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix IPv4 source address type detection #93

Merged
merged 1 commit into from
Apr 27, 2021
Merged

Fix IPv4 source address type detection #93

merged 1 commit into from
Apr 27, 2021

Conversation

nbarrientos
Copy link
Collaborator

Before this patch, a rule like this:

  nftables::simplerule { 'foo':
    action   => 'accept',
    dport    => 443,
    proto    => 'tcp4',
    saddr    => '192.168.1.10',
  }

would incorrectly generate this rule:

ip version 4 tcp dport {443} ip6 saddr 192.168.1.10 accept

Note the ip6 saddr.

@nbarrientos
Fix IPv4 source address type detection
bd8baa0 
Before this patch, a rule like this:

```
  nftables::simplerule { 'foo':
    action   => 'accept',
    dport    => 443,
    proto    => 'tcp4',
    saddr    => '192.168.1.10',
  }
```

would incorrectly generate this rule:

```
ip version 4 tcp dport {443} ip6 saddr 192.168.1.10 accept
```

Note the 'ip6 saddr'.
@nbarrientos nbarrientos added the bug Something isn't working label Apr 26, 2021
@traylenator traylenator merged commit 4937bed into voxpupuli:master Apr 27, 2021
@traylenator traylenator deleted the ibarrien_saddr branch April 27, 2021 06:16
figless pushed a commit to figless/puppet-nftables that referenced this pull request Aug 25, 2021
@nbarrientos
Squashed 'code/' changes from cae7912..1d9033d
5708bb8 
1d9033d Release 2.0.1-rc0
0c4f8de Merge pull request voxpupuli#97 from cernops/release_140
683d104 Prepare release 2.0.0
65b4f2f Merge pull request voxpupuli#96 from cernops/issue95
7b9d6ff Allow creating a totally empty firewall
4937bed Merge pull request voxpupuli#93 from cernops/ibarrien_saddr
bd8baa0 Fix IPv4 source address type detection
a8008e4 Merge pull request voxpupuli#92 from traylenator/everything
1eda6ef Rely on puppet 6 calling daemon-reload
ad042d5 Merge remote-tracking branch 'kenyon/bump-concat' into everything
42c426c puppetlabs/concat: Allow 7.x
9b6d7f0 puppetlabs/stdlib: Allow 7.x
af33f65 camptocamp/systemd: allow 3.x
f82aaa5 Merge pull request voxpupuli#88 from cernops/dotfiles_yas_link
693a3d9 Amend link to Yasnippets
89d99b8 Merge pull request voxpupuli#87 from cernops/bump_rc
bbdcfb2 Release 1.3.1-rc0
242df53 metadata.json: drop Puppet 5 support

git-subtree-dir: code
git-subtree-split: 1d9033d
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@duritong duritong duritong approved these changes

@traylenator traylenator Awaiting requested review from traylenator

Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@nbarrientos @duritong @traylenator