Révision 16fd95b1
Update init.pp comments
| manifests/init.pp | ||
|---|---|---|
| 233 | 233 |
} |
| 234 | 234 |
|
| 235 | 235 |
if $purge_unmanaged_rules {
|
| 236 |
# Reload the nftables ruleset from the on-disk ruleset if there are differences or it is absent. -s must be used to ignore counters
|
|
| 236 |
# Reload nftables ruleset from disk if running state not match last service change hash, or is absent (-s required to ignore counters)
|
|
| 237 | 237 |
exec { 'nftables_memory_state_check':
|
| 238 | 238 |
command => ['echo', 'reloading_nftables'], |
| 239 | 239 |
path => $facts['path'], |
| ... | ... | |
| 242 | 242 |
notify => Service['nftables'], |
| 243 | 243 |
} |
| 244 | 244 |
|
| 245 |
# Generate nftables_hash upon any changes from the nftables service
|
|
| 245 |
# Generate nftables hash upon changes to the nftables service
|
|
| 246 | 246 |
exec { 'nftables_generate_hash':
|
| 247 | 247 |
command => ["nft -s list ruleset | sha1sum > ${inmem_rules_hash_file}"],
|
| 248 | 248 |
path => $facts['path'], |
Formats disponibles : Unified diff