(#15702) firewall duplicated rules are not removed

author Anastasis Andronidis <anastasis90@yahoo.gr>

Thu, 26 Jul 2012 12:24:21 +0000 (14:24 +0200)

committer Ken Barber <ken@bob.sh>

Mon, 15 Apr 2013 00:07:58 +0000 (01:07 +0100)
author Anastasis Andronidis <anastasis90@yahoo.gr>
Thu, 26 Jul 2012 12:24:21 +0000 (14:24 +0200)
committer Ken Barber <ken@bob.sh>
Mon, 15 Apr 2013 00:07:58 +0000 (01:07 +0100)
diff --git a/lib/puppet/provider/firewall/iptables.rb b/lib/puppet/provider/firewall/iptables.rb

index edc7a53bbcdfe569c03d23f3f4f94932a5484c60..03da45486614478441fcea4405ad2c08c28ae350 100644 (file)
--- a/lib/puppet/provider/firewall/iptables.rb
+++ b/lib/puppet/provider/firewall/iptables.rb
@@ -232,7 +232,7 @@ Puppet::Type.type(:firewall).provide :iptables, :parent => Puppet::Provider::Fir
      # Puppet-firewall requires that all rules have comments (resource names) and will fail if
      # a rule in iptables does not have a comment. We get around this by appending a high level
      if ! hash[:name]
-      hash[:name] = "9999 #{Digest::MD5.hexdigest(line)}"
+      hash[:name] = "999#{counter} #{Digest::MD5.hexdigest(line)}"
      end
  
      # Iptables defaults to log_level '4', so it is omitted from the output of iptables-save.
author	Anastasis Andronidis <anastasis90@yahoo.gr>
	Thu, 26 Jul 2012 12:24:21 +0000 (14:24 +0200)
committer	Ken Barber <ken@bob.sh>
	Mon, 15 Apr 2013 00:07:58 +0000 (01:07 +0100)