On 2011-11-29 13:05 , Mohamed Lrhazi wrote: > Hi, > > am trying this rule: > > > firewall { '100 allow ssh from GUNET': > proto => 'tcp', > dport => '22', > source => ['10.0.0.0/8','192.168.0.0/16',], > action => accept, > } > > > and it only seems to add a rule for the first subnet. The second is > silently ignored. > > is my syntax incorrect? > > Thanks, > Mohamed. >
The type doesn't appear to be written to handle accepting arrays in the source property, so given how it's written it's expected behavior, though sounds like it's rather undesirable. -- Jacob Helwig http://about.me/jhelwig
signature.asc
Description: OpenPGP digital signature