Skip to content

Commit 70b871c

Browse files
traylenatortraylenator
committed
Correct nomad http api port opening
The nomad api port was being matched but was not be accepted.
1 parent 9735544 commit 70b871c

File tree

2 files changed

+2
-2
lines changed

2 files changed

+2
-2
lines changed

manifests/rules/nomad.pp

+1-1
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,7 @@
2222
# Open http api port to everything.
2323
#
2424
nftables::rule { 'default_in-nomad_http':
25-
content => "tcp dport ${http}",
25+
content => "tcp dport ${http} accept",
2626
}
2727

2828
['ip','ip6'].each | $_family | {

spec/classes/rules/nomad_spec.rb

+1-1
Original file line numberDiff line numberDiff line change
@@ -29,7 +29,7 @@
2929
}
3030

3131
it {
32-
is_expected.to contain_nftables__rule('default_in-nomad_http').with_content('tcp dport 4646')
32+
is_expected.to contain_nftables__rule('default_in-nomad_http').with_content('tcp dport 4646 accept')
3333
is_expected.to contain_nftables__rule('default_in-nomad_rpc_ip6').with_content('tcp dport 4647 ip6 saddr @nomad_ip6 accept')
3434
is_expected.to contain_nftables__rule('default_in-nomad_rpc_ip').with_content('tcp dport 4647 ip saddr @nomad_ip accept')
3535
is_expected.to contain_nftables__rule('default_in-nomad_serf_tcp_ip6').with_content('tcp dport 4648 ip6 saddr @nomad_ip6 accept')

0 commit comments

Comments
 (0)