ferm/aql: fix multicast rule

author Aurelien Jarno <aurelien@aurel32.net>

Tue, 20 Jun 2017 20:32:25 +0000 (22:32 +0200)

committer Aurelien Jarno <aurelien@aurel32.net>

Tue, 20 Jun 2017 20:32:25 +0000 (22:32 +0200)
author Aurelien Jarno <aurelien@aurel32.net>
Tue, 20 Jun 2017 20:32:25 +0000 (22:32 +0200)
committer Aurelien Jarno <aurelien@aurel32.net>
Tue, 20 Jun 2017 20:32:25 +0000 (22:32 +0200)
diff --git a/modules/ferm/manifests/aql.pp b/modules/ferm/manifests/aql.pp

index b5578e2..ece1ee1 100644 (file)
--- a/modules/ferm/manifests/aql.pp
+++ b/modules/ferm/manifests/aql.pp
@@ -4,7 +4,7 @@ class ferm::aql {
                 description => 'drop multicast traffic to avoid triggering protection',
                 table       => 'filter',
                 chain       => 'OUTPUT',
-               rule        => 'destination 224.0.0.0/24 jump log_or_drop'
+               rule        => 'destination 224.0.0.0/4 jump log_or_drop'
         }
  }
author	Aurelien Jarno <aurelien@aurel32.net>
	Tue, 20 Jun 2017 20:32:25 +0000 (22:32 +0200)
committer	Aurelien Jarno <aurelien@aurel32.net>
	Tue, 20 Jun 2017 20:32:25 +0000 (22:32 +0200)