Closed and-win closed 5 years ago
Hi @and-win
Thank you. Is this something we might think it helps to make it configurable? Like setting a property to default insert
and when needed someone can override it to append
? Or doesn't it make sense?
Hello Werner,
I believe it will be useful when action: insert
by default, and changeable through variable, something like {{ iptables_default_action }}
Thanks
Hi @and-win
Yes, I agree, but would like to see it somehow prefixed with zabbix_agent_firewall
, so it seems consistent with other iptables related variables. Could you also add something into the documentation, so it is clear that it can be overriden?
Thanks! 👍
I'll make this changes, so we can create a release soon with his in it. Thanks! 👍
Description of PR By default module iptables uses action APPEND which adds a rule in the end of rule's list. Such rule will not work if it's added after
reject all traffic
rule. For example:Type of change Improvement