You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Rich_rule creation works OK if the source is specified as an address, but not if specified as an ipset.
Specify the source as a valid IPset and the rule creation fails because the source is empty, the rule is not surrounded by single quotes, and the --add-rich-rule param does not have a "=" sign after it.
I'm not sure that IPSets get created at all as calling firewall-cmd --get-ipsets on the target node doesn't list any ipsets, whether I specified them in manifests or in Hiera.
It's possible that my syntax is wrong, but no IPset errors are generated and the hiera is valid.
Would you have time to test the IPset creation and rich rule creation, and post the hiera and/or manifest code to call, please?
Many thanks
Mark
The text was updated successfully, but these errors were encountered:
Rich_rule creation works OK if the source is specified as an address, but not if specified as an ipset.
Specify the source as a valid IPset and the rule creation fails because the source is empty, the rule is not surrounded by single quotes, and the --add-rich-rule param does not have a "=" sign after it.
I'm not sure that IPSets get created at all as calling firewall-cmd --get-ipsets on the target node doesn't list any ipsets, whether I specified them in manifests or in Hiera.
It's possible that my syntax is wrong, but no IPset errors are generated and the hiera is valid.
Would you have time to test the IPset creation and rich rule creation, and post the hiera and/or manifest code to call, please?
Many thanks
Mark
The text was updated successfully, but these errors were encountered: