Uploaded image for project: 'Modules'
  1. Modules
  2. MODULES-7771

firewall: cannot parse rules with multiple comments

    Details

    • Type: Bug
    • Status: Open
    • Priority: Normal
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: firewall
    • Labels:
      None
    • QA Risk Assessment:
      Needs Assessment

      Description

      It's possible to create iptables rules like this:

      -A KUBE-NODEPORT-NON-LOCAL -p tcp -m comment --comment "namespace-foo/logs-forwarder:secure-forward" -m tcp --dport 43298 -m comment --comment "namespace-foo/logs-forwarder:secure-forward" -m state --state NEW -j ACCEPT

      This is a valid iptables rule. The firewall module chokes on this:

      kipping unparsable iptables rule: keys (6) and values (10) count mismatch on line

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              mhutter Manuel H
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:

                Zendesk Support