On 2011-11-29 13:05 , Mohamed Lrhazi wrote:
> Hi,
> 
> am trying this rule:
> 
> 
>     firewall { '100 allow ssh from GUNET':
>       proto       => 'tcp',
>       dport       => '22',
>       source      => ['10.0.0.0/8','192.168.0.0/16',],
>       action      => accept,
>     }
> 
> 
> and it only seems to add a rule for the first subnet. The second is
> silently ignored.
> 
> is my syntax incorrect?
> 
> Thanks,
> Mohamed.
> 

The type doesn't appear to be written to handle accepting arrays in the
source property, so given how it's written it's expected behavior,
though sounds like it's rather undesirable.

-- 
Jacob Helwig
http://about.me/jhelwig

Attachment: signature.asc
Description: OpenPGP digital signature

Reply via email to