I'm just asking how is the "correct" way in a salt state to ensure that a port is open on a SLES 12 system. SLES 15 uses firewalld, so I use "firewalld.present"
Allen B.
--
Allen Beddingfield
Systems Engineer
Office of Information Technology
The University of Alabama
Office 205-348-2251
allen@ua.edu
________________________________________
From: Victor Zhestkov
Sent: Wednesday, June 23, 2021 9:01 AM
To: Allen Beddingfield; uyuni-users@opensuse.org
Subject: [EXTERNAL] Re: Salt state for SLES 12 firewall. Use salt.states.iptables?
Hi Allen.
Not sure if I understood the idea right, but there is an issue related to saving rules for iptables, the fix was tested, but not yet published in the latest package.
Here is the upstream PR.
https://github.com/saltstack/salt/pull/60358
Anyway saving the rules to the file need to be tested for each distro.
Regards,
Victor
On Wed, 2021-06-23 at 13:56 +0000, Allen Beddingfield wrote:
I have been using the firewalld state module for SLES 15 successfully, but I'm now trying to write a state for SLES 12, which uses the older SuSEfirewall2. Is the salt.states.iptables module the correct approach for this?
Wondering if directly inserting iptables rules with that is going to cause any issues if someone opens the yast firewall module later?
Allen B.
--
Allen Beddingfield
Systems Engineer
Office of Information Technology
The University of Alabama
Office 205-348-2251
allen@ua.edumailto:allen@ua.edu