From: Peter Palfrader <peter@palfrader.org>
Date: Sat, 19 May 2012 20:25:47 +0000 (+0200)
Subject: fw forwarding updates for fischer, II
X-Git-Url: https://git.adam-barratt.org.uk/?a=commitdiff_plain;h=d25c92104d22de2c402a7d0b4425106e38a0babe;p=mirror%2Fdsa-puppet.git

fw forwarding updates for fischer, II
---

diff --git a/modules/ferm/manifests/per-host.pp b/modules/ferm/manifests/per-host.pp
index 93ac18f18..d3a8a29aa 100644
--- a/modules/ferm/manifests/per-host.pp
+++ b/modules/ferm/manifests/per-host.pp
@@ -181,7 +181,7 @@ interface br0 outerface br0 ACCEPT;
 interface br1 outerface br1 ACCEPT;
 
 interface br2 outerface br0 jump from-kfreebsd;
-interface br0 destination ($ADDRESS_FISCHER) proto tcp dport 22 ACCESS;
+interface br0 destination ($ADDRESS_FISCHER) proto tcp dport 22 ACCEPT;
 interface br0 destination ($FREEBSD_HOSTS) jump to-kfreebsd;
 ULOG ulog-prefix "REJECT FORWARD: ";
 REJECT reject-with icmp-admin-prohibited