implement multiport support for dport/sport

author: Thore Bödecker <me@foxxx0.de> 2020-06-22 15:53:06 +0200
committer: Thore Bödecker <me@foxxx0.de> 2020-06-22 16:17:13 +0200
commit: e048afaec245b19ed8a94a8e2e893c9c9b4e47e6 (patch)
tree: c3801f67583f08c9730ff60e9fb5cc6bffe0f613 /README.md
parent: 8d967c7b915fec97846b1d6b567489646b3096a3 (diff)
download: puppet-ferm-e048afaec245b19ed8a94a8e2e893c9c9b4e47e6.tar.gz
puppet-ferm-e048afaec245b19ed8a94a8e2e893c9c9b4e47e6.tar.bz2
1 files changed, 4 insertions, 2 deletions
diff --git a/README.md b/README.md
index 64a9f84..f095ce7 100644
--- a/README.md
+++ b/README.md
@@ -62,7 +62,7 @@ You can easily define rules in Puppet (they don't need to be exported resources)
     chain  => 'INPUT',
     policy => 'ACCEPT',
     proto  => 'tcp',
-    dport  => '(9092 9093)',
+    dport  => [9092, 9093],
     saddr  => "(${facts['networking']['ip6']}/128 ${facts['networking']['ip']}/32)",
     tag    => 'allow_kafka_server2server',
   }
@@ -97,7 +97,9 @@ ferm::rules:
     chain: 'INPUT'
     policy: 'ACCEPT'
     proto: 'tcp'
-    dport: '(80 443)'
+    dport:
+      - 80
+      - 443
     saddr: "%{alias('subnets')}"
 ```
author	Thore Bödecker <me@foxxx0.de>	2020-06-22 15:53:06 +0200
committer	Thore Bödecker <me@foxxx0.de>	2020-06-22 16:17:13 +0200
commit	e048afaec245b19ed8a94a8e2e893c9c9b4e47e6 (patch)
tree	c3801f67583f08c9730ff60e9fb5cc6bffe0f613 /README.md
parent	8d967c7b915fec97846b1d6b567489646b3096a3 (diff)
download	puppet-ferm-e048afaec245b19ed8a94a8e2e893c9c9b4e47e6.tar.gz puppet-ferm-e048afaec245b19ed8a94a8e2e893c9c9b4e47e6.tar.bz2