/ - Diff - puppet nftables - Koumbit's Redmine

Révision 6793d286

Ajouté par Nacho Barrientos il y a plus de 4 ans

Handle dport internally always as an array

spec/defines/simplerule_spec.rb
46	46	it { is_expected.to compile }
47	47	it {
48	48	is_expected.to contain_nftables__rule('default_out-my_big_rule').with(
49		content: 'udp dport 333 ip6 daddr 2001:1458::/32 counter accept comment "this is my rule"',
	49	content: 'udp dport {333} ip6 daddr 2001:1458::/32 counter accept comment "this is my rule"',
50	50	order: '50',
51	51	)
52	52	}
...	...
63	63	it { is_expected.to compile }
64	64	it {
65	65	is_expected.to contain_nftables__rule('default_in-my_default_rule_name').with(
66		content: 'tcp dport 333-334 accept',
	66	content: 'tcp dport {333-334} accept',
67	67	)
68	68	}
69	69	end
...	...
95	95	it { is_expected.to compile }
96	96	it {
97	97	is_expected.to contain_nftables__rule('default_in-my_default_rule_name').with(
98		content: 'ip version 4 tcp dport 333 accept',
	98	content: 'ip version 4 tcp dport {333} accept',
99	99	)
100	100	}
101	101	end
...	...
111	111	it { is_expected.to compile }
112	112	it {
113	113	is_expected.to contain_nftables__rule('default_in-my_default_rule_name').with(
114		content: 'ip version 6 udp dport 33 accept',
	114	content: 'ip version 6 udp dport {33} accept',
115	115	)
116	116	}
117	117	end
...	...
128	128	it { is_expected.to compile }
129	129	it {
130	130	is_expected.to contain_nftables__rule('default_in-my_default_rule_name').with(
131		content: 'tcp dport 33 ip daddr 192.168.0.1/24 accept',
	131	content: 'tcp dport {33} ip daddr 192.168.0.1/24 accept',
132	132	)
133	133	}
134	134	end

       $_dst_hosts = undef
     } -%>
     <%- if $proto and $dport {
       if $dport =~ Array {
         $_dst_port = "${_proto} dport {${dport.join(', ')}}"
       } else {
         $_dst_port = "${_proto} dport $dport"
+      }
       $_dst_port = "${_proto} dport {${Array($dport, true).join(', ')}}"
     } else {
       $_dst_port = undef
     } -%>

Formats disponibles : Unified diff