Uploaded image for project: 'Modules'
  1. Modules
  2. MODULES-10102

firewall : Appears to clear and recreate all rules each time when purge => true

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: firewall
    • Labels:
      None
    • Template:
      MODULES Bug Template
    • Method Found:
      Needs Assessment
    • QA Risk Assessment:
      Needs Assessment

      Description

      Basic Info
      Module Version: 1.14.0
      Puppet Version: 6.1 server, 6.10 client
      OS Name/Version: CentOS 7

      When resources { 'firewall': includes purge => true, puppet runs do not appear idempotent. MODULES-8413 is also exhibited, but appears to be a separate issue.

      Desired Behavior: No change is made to firewall rules when catalog remains the same and there are no local changes

      Actual Behavior: Appears to create rules each run

       

      15:16:54 duncan@osdb ~ $ sudo /opt/puppetlabs/bin/puppet agent -t --environment=testing
      Info: Using configured environment 'testing'
      Info: Retrieving pluginfacts
      Info: Retrieving plugin
      Info: Retrieving locales
      Info: Loading facts
      Info: Caching catalog for osdb.ad.goldblattsystems.com
      Info: Applying configuration version '1573510618'
      Notice: /Stage[main]/Common/Firewall[9001 2c3b855ee5ef4043e1a04ce9c8f1c7eb]/ensure: ensured absent (corrective)
      Notice: /Stage[main]/Common/Firewall[9002 7686fdf971b558f5ebfca49abfeafa8e]/ensure: ensured absent (corrective)
      Notice: /Stage[main]/Common/Firewall[9003 72afb5edd89247542f6ba0df981e6695]/ensure: ensured absent (corrective)
      Notice: /Stage[main]/Common/Firewall[9004 2872497b8d21b09e7ef1fc8f629474c8]/ensure: ensured absent (corrective)
      Notice: /Stage[main]/Firewall::Linux::Redhat/File[/etc/sysconfig/ip6tables]/seluser: seluser changed 'unconfined_u' to 'system_u' (corrective)
      Notice: Applied catalog in 2.45 seconds
      15:17:01 duncan@osdb ~ 2 $ sudo /opt/puppetlabs/bin/puppet agent -t --environment=testing
      Info: Using configured environment 'testing'
      Info: Retrieving pluginfacts
      Info: Retrieving plugin
      Info: Retrieving locales
      Info: Loading facts
      Info: Caching catalog for osdb.ad.goldblattsystems.com
      Info: Applying configuration version '1573510625'
      Notice: /Stage[main]/Common/Firewall[9001 2c3b855ee5ef4043e1a04ce9c8f1c7eb]/ensure: ensured absent (corrective)
      Notice: /Stage[main]/Common/Firewall[9002 7686fdf971b558f5ebfca49abfeafa8e]/ensure: ensured absent (corrective)
      Notice: /Stage[main]/Common/Firewall[9003 72afb5edd89247542f6ba0df981e6695]/ensure: ensured absent (corrective)
      Notice: /Stage[main]/Common/Firewall[9004 2872497b8d21b09e7ef1fc8f629474c8]/ensure: ensured absent (corrective)
      Notice: /Stage[main]/Firewall::Linux::Redhat/File[/etc/sysconfig/ip6tables]/seluser: seluser changed 'unconfined_u' to 'system_u' (corrective)
      Notice: Applied catalog in 2.62 seconds
      15:17:08 duncan@osdb ~ 2 ${code}
       

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              loredana.ionce Loredana Ionce
              Reporter:
              virtualdxs Duncan X Simpson
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Zendesk Support