Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make filtering on dest addr optional #16

Merged
merged 1 commit into from
Aug 2, 2021
Merged

Make filtering on dest addr optional #16

merged 1 commit into from
Aug 2, 2021

Conversation

bastelfreak
Copy link
Member

Previously $destination_addresses was an array with the public
ipv6/ipv4 addresses. Those were used as destination address in the
firewall rules. People might have dynamic local ips so this won't
work/creates a lot of noise due to constant firewall rule updates. As a
fix, it was already possible to set $destination_addresses to an empty
Array ([]). But passing this to the daddr parameter in ferm::rule
created a broken firewall rule. This patch sets the daddr parameter to
undef if $destination_addresses is an empty array.

Pull Request (PR) description

This Pull Request (PR) fixes the following issues

@bastelfreak bastelfreak added the bug Something isn't working label Aug 2, 2021
@bastelfreak bastelfreak self-assigned this Aug 2, 2021
@bastelfreak
Make filtering on dest addr optional
61c7377 
Previously `$destination_addresses` was an array with the public
ipv6/ipv4 addresses. Those were used as destination address in the
firewall rules. People might have dynamic local ips so this won't
work/creates a lot of noise due to constant firewall rule updates. As a
fix, it was already possible to set `$destination_addresses` to an empty
Array (`[]`). But passing this to the `daddr` parameter in ferm::rule
created a broken firewall rule. This patch sets the `daddr` parameter to
`undef` if `$destination_addresses` is an empty array.
@bastelfreak bastelfreak merged commit ece1c28 into voxpupuli:master Aug 2, 2021
@bastelfreak bastelfreak deleted the ferm branch August 2, 2021 08:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TuningYourCode TuningYourCode TuningYourCode approved these changes

Assignees

@bastelfreak bastelfreak

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@bastelfreak @TuningYourCode