diff options
| author | Tim Meusel <tim@bastelfreak.de> | 2020-04-21 13:12:47 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-04-21 13:12:47 +0200 |
| commit | c34c528537cd9baa7057588d628a36843d63b015 (patch) | |
| tree | 1bfa33e2712c03e0dc201ec104e28974b8e79614 /spec | |
| parent | 9b71e958f45f50071203eaa7d6aac445ee31ff14 (diff) | |
| parent | 91fa3bcde36896eedade89911df93bbf58b6609b (diff) | |
| download | puppet-ferm-c34c528537cd9baa7057588d628a36843d63b015.tar.gz puppet-ferm-c34c528537cd9baa7057588d628a36843d63b015.tar.bz2 | |
Merge pull request #90 from Dan33l/add_conntrack_dedicated
use dedicated conntrack parameters / by default disable conntrack for new chains / by default enable conntrack for filter INPUT chain
Diffstat (limited to 'spec')
| -rw-r--r-- | spec/acceptance/ferm_spec.rb | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/spec/acceptance/ferm_spec.rb b/spec/acceptance/ferm_spec.rb index c5018da..f827dc2 100644 --- a/spec/acceptance/ferm_spec.rb +++ b/spec/acceptance/ferm_spec.rb @@ -32,7 +32,7 @@ basic_manifest = %( manage_configfile => true, manage_initfile => #{manage_initfile}, # CentOS-6 does not provide init script forward_policy => 'DROP', - output_policy => 'DROP', + output_policy => 'ACCEPT', input_policy => 'DROP', rules => { 'allow_acceptance_tests' => { @@ -66,7 +66,7 @@ describe 'ferm' do end describe command('iptables-save') do - its(:stdout) { is_expected.to match %r{.*filter.*:INPUT DROP.*:FORWARD DROP.*:OUTPUT DROP.*}m } + its(:stdout) { is_expected.to match %r{.*filter.*:INPUT DROP.*:FORWARD DROP.*:OUTPUT ACCEPT.*}m } end describe iptables do |