Hi, Puppet master is 3.0.2 Puppet agent is 3.0.2 OS is RHEL6 Node manifests are flat files under a GIT repo. Overarching firewall rules are applied by an ssh module from manifests/init.pp to allow ssh access from management servers, this works all the time. Service specific firewall rules are laid down from a services module. I tried calling the *service*::firewall.pp from the* service*::init.pp but this resulted in the above behaviour. I ended up having to do an include of the *service*::firewall from the node manifest
On Thursday, 6 February 2014 11:02:27 UTC, Felix.Frank wrote: > > Hi, > > this hasn't been solved yet, has it? > > What version of puppet is this (master+agent), how is the master laid > out (passenger?) and how are your manifests structured? Are you relying > on import somewhere e.g.? > > Thanks, > Felix > > On 01/16/2014 04:40 PM, Chris W wrote: > > If I do iptables -F on the box, these are reliably applied but, during a > > random Puppet Agent run they are subsequently removed. > > Later, again at random, they are reapplied. > > I've just updated the firewall module, so we are running on version > 0.4.2. > > > > Anyone else seen this sort of behaviour or have any suggestions? > -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/1c5e0f24-94d7-49c5-ac4f-45ec529df47f%40googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
