On 12/02/2010 03:00 AM, Mark McLoughlin wrote:
> Hi,
>
> On Wed, 2010-12-01 at 16:16 -0500, Mohammed Morsi wrote:
>> # Setup firewall for deltacloud
>> define dc::firewall(){
>> - firewall::setup{'deltacloud': status=>"enabled"}
>> - firewall_open_port{"httpd": port => "80", policy => "tcp"}
>> + firewall::rule{"http": destination_port => '80'}
>> }
> I tried the recipe earlier this week and it clobbered my iptables rules.
> This will fix that, right?
>
> Nice work ...
>
> Cheers,
> Mark.
>
Yes I believe so, at least after running the new recipe locally, my
firewall rules appear to be still in order (with port 80 open via this
puppet recipe).
Previously we were using the firewall puppet module provided by ace
(appliance-tools) which I believe blew away the existing iptables rules
before applying whichever custom ones the user defined. Now I'm using a
more general purpose puppet firewall module which preserves the existing
rules.
If there still is a problem with this or any other part of the
deltacloud puppet recipe please do not hesitate to email me or better
yet ping me on IRC (mmorsi). I'm looking for any and all feedback to
make this as tight as possible. Thanks alot!
-Mo
_______________________________________________
deltacloud-devel mailing list
[email protected]
https://fedorahosted.org/mailman/listinfo/deltacloud-devel
