]> git.donarmstrong.com Git - dsa-puppet.git/commitdiff
projects / dsa-puppet.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d41d2fc)
make TCP_UDP_SERVICE not be stateful
authorStephen Gran <steve@lobefin.net>
Mon, 21 Jan 2013 11:52:33 +0000 (11:52 +0000)
committerStephen Gran <steve@lobefin.net>
Mon, 21 Jan 2013 11:52:33 +0000 (11:52 +0000)
Signed-off-by: Stephen Gran <steve@lobefin.net>
modules/ferm/templates/defs.conf.erb patch | blob | history

diff --git a/modules/ferm/templates/defs.conf.erb b/modules/ferm/templates/defs.conf.erb
index 5251421fdc02e9a328c4510a3c7ef8ae5e443440..366fbf05f1e5c4fd8178086aeaf43ff07ec88e0a 100644 (file)
--- a/modules/ferm/templates/defs.conf.erb
+++ b/modules/ferm/templates/defs.conf.erb
@@ -16,7 +16,7 @@
 }
 
 @def &TCP_UDP_SERVICE_RANGE($port, $srange) = {
- proto (tcp udp) mod state state (NEW) dport $port @subchain "$port" { saddr ($srange) ACCEPT; }"
+ proto (tcp udp) dport $port @subchain "$port" { saddr ($srange) ACCEPT; }"
 }
 
 @def $HOST_MAILRELAY_V4 = (<%=
Unnamed repository; edit this file 'description' to name the repository.