| commit | 21c93fb4e5c355832acfbea7ad8217980a43ff4d | [log] [tgz] |
|---|---|---|
| author | Filip Pytloun <filip@pytloun.cz> | Mon Apr 11 11:59:20 2016 +0200 |
| committer | Filip Pytloun <filip@pytloun.cz> | Mon Apr 11 11:59:20 2016 +0200 |
| tree | 7654942352e2c633a70a2737b95139c02b314d4a | |
| parent | 0648db7a1395ebe9af5063c346dd1f31a25cf375 [diff] |
Don't set policy if rules failed
diff --git a/iptables/service.sls b/iptables/service.sls index 2005414..384bd35 100644 --- a/iptables/service.sls +++ b/iptables/service.sls
@@ -71,7 +71,10 @@ {%- if rule.destination_network is defined %} - destination: {{ rule.destination_network }} {%- endif %} - + {%- if chain.policy is defined %} + - require_in: + - iptables: iptables_{{ chain_name }}_policy: + {%- endif %} - save: True {%- endfor %}