diff options
author | Thore Bödecker <me@foxxx0.de> | 2020-06-22 15:53:06 +0200 |
---|---|---|
committer | Thore Bödecker <me@foxxx0.de> | 2020-06-22 16:17:13 +0200 |
commit | e048afaec245b19ed8a94a8e2e893c9c9b4e47e6 (patch) | |
tree | c3801f67583f08c9730ff60e9fb5cc6bffe0f613 /README.md | |
parent | 8d967c7b915fec97846b1d6b567489646b3096a3 (diff) | |
download | puppet-ferm-e048afaec245b19ed8a94a8e2e893c9c9b4e47e6.tar.gz puppet-ferm-e048afaec245b19ed8a94a8e2e893c9c9b4e47e6.tar.bz2 |
implement multiport support for dport/sport
Diffstat (limited to 'README.md')
-rw-r--r-- | README.md | 6 |
1 files changed, 4 insertions, 2 deletions
@@ -62,7 +62,7 @@ You can easily define rules in Puppet (they don't need to be exported resources) chain => 'INPUT', policy => 'ACCEPT', proto => 'tcp', - dport => '(9092 9093)', + dport => [9092, 9093], saddr => "(${facts['networking']['ip6']}/128 ${facts['networking']['ip']}/32)", tag => 'allow_kafka_server2server', } @@ -97,7 +97,9 @@ ferm::rules: chain: 'INPUT' policy: 'ACCEPT' proto: 'tcp' - dport: '(80 443)' + dport: + - 80 + - 443 saddr: "%{alias('subnets')}" ``` |