Merge pull request #81 from bastelfreak/hotifx

disable conntrack filtering in FORWARD/OUTPUT
author: Tim Meusel <tim@bastelfreak.de> 2019-10-01 16:10:14 +0200
committer: GitHub <noreply@github.com> 2019-10-01 16:10:14 +0200
commit: 6c1a735df3fe28a877009b4fef0db33eb7106e56 (patch)
tree: 67eed982b65c8f663d4ce5e987c828430569e7c0 /manifests
parent: 631b6ae7d342eaa113833b62d0462dcccdced8f4 (diff)
parent: 19c71d9abd269d88450f54ddb95e036c804a8fe8 (diff)
download: puppet-ferm-6c1a735df3fe28a877009b4fef0db33eb7106e56.tar.gz
puppet-ferm-6c1a735df3fe28a877009b4fef0db33eb7106e56.tar.bz2
1 files changed, 2 insertions, 2 deletions
diff --git a/manifests/config.pp b/manifests/config.pp
index 7dae7a5..16ecd9e 100644
--- a/manifests/config.pp
+++ b/manifests/config.pp
@@ -49,12 +49,12 @@ class ferm::config {
   }
   ferm::chain{'FORWARD':
     policy              => $ferm::forward_policy,
-    disable_conntrack   => $ferm::disable_conntrack,
+    disable_conntrack   => true,
     log_dropped_packets => $ferm::forward_log_dropped_packets,
   }
   ferm::chain{'OUTPUT':
     policy              => $ferm::output_policy,
-    disable_conntrack   => $ferm::disable_conntrack,
+    disable_conntrack   => true,
     log_dropped_packets => $ferm::output_log_dropped_packets,
   }
author	Tim Meusel <tim@bastelfreak.de>	2019-10-01 16:10:14 +0200
committer	GitHub <noreply@github.com>	2019-10-01 16:10:14 +0200
commit	6c1a735df3fe28a877009b4fef0db33eb7106e56 (patch)
tree	67eed982b65c8f663d4ce5e987c828430569e7c0 /manifests
parent	631b6ae7d342eaa113833b62d0462dcccdced8f4 (diff)
parent	19c71d9abd269d88450f54ddb95e036c804a8fe8 (diff)
download	puppet-ferm-6c1a735df3fe28a877009b4fef0db33eb7106e56.tar.gz puppet-ferm-6c1a735df3fe28a877009b4fef0db33eb7106e56.tar.bz2