From 9125b632b1c4cfdc3843a262f9ab0382e3c34053 Mon Sep 17 00:00:00 2001
From: Andreas Kempe <kempe@lysator.liu.se>
Date: Fri, 6 Dec 2024 21:43:53 +0100
Subject: [PATCH] iptables: change provider to protocol

According to the firewall module documentation, provider has been
renamed to protocol.
---
 manifests/iptables/pre.pp          | 6 +++---
 manifests/iptables_default_deny.pp | 8 ++++----
 manifests/iptables_only_lysator.pp | 8 ++++----
 3 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/manifests/iptables/pre.pp b/manifests/iptables/pre.pp
index 8877fd0..528b3ed 100644
--- a/manifests/iptables/pre.pp
+++ b/manifests/iptables/pre.pp
@@ -49,19 +49,19 @@ class lysnetwork::iptables::pre {
   firewall { '000 accept all icmp IPv6':
     proto    => 'ipv6-icmp',
     action   => 'accept',
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
   -> firewall { '001 accept all from Lysator IPv6':
     proto    => 'all',
     source   => '2001:6b0:17:f0a0::0/64',
     action   => 'accept',
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
   -> firewall { '002 accept related established rules IPv6':
     proto    => 'all',
     state    => ['RELATED', 'ESTABLISHED'],
     action   => 'accept',
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
 }
 
diff --git a/manifests/iptables_default_deny.pp b/manifests/iptables_default_deny.pp
index 9499c9b..c4c9ea1 100644
--- a/manifests/iptables_default_deny.pp
+++ b/manifests/iptables_default_deny.pp
@@ -42,19 +42,19 @@ class lysnetwork::iptables_default_deny {
   firewall { '000 accept all icmp ipv6':
     proto    => 'ipv6-icmp',
     action   => accept,
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
   -> firewall { '001 accept all on lo ipv6':
     proto    => all,
     iniface  => 'lo',
     action   => accept,
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
   -> firewall { '002 accept related and established ipv6':
     proto    => all,
     state    => ['RELATED', 'ESTABLISHED',],
     action   => accept,
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
 
   # Allow ssh
@@ -68,6 +68,6 @@ class lysnetwork::iptables_default_deny {
     proto    => tcp,
     dport    => '22',
     action   => accept,
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
 }
diff --git a/manifests/iptables_only_lysator.pp b/manifests/iptables_only_lysator.pp
index a45e9e6..fb574a2 100644
--- a/manifests/iptables_only_lysator.pp
+++ b/manifests/iptables_only_lysator.pp
@@ -36,7 +36,7 @@ class lysnetwork::iptables_only_lysator {
     proto    => all,
     source   => '130.236.254.0/24',
     action   => accept,
-    provider => 'iptables'
+    protocol => 'iptables'
   }
 
   # IPv6
@@ -45,21 +45,21 @@ class lysnetwork::iptables_only_lysator {
     proto    => all,
     iniface  => 'lo',
     action   => accept,
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
 
   firewall { '002 accept related and established ipv6':
     proto    => all,
     state    => ['RELATED', 'ESTABLISHED',],
     action   => accept,
-    provider => 'ip6tables',
+    protocol => 'ip6tables',
   }
 
   firewall { '003 allow lysators ipv6 network':
     proto    => all,
     source   => '2001:6b0:17:f0a0::/64',
     action   => accept,
-    provider => 'ip6tables'
+    protocol => 'ip6tables'
   }
 }
 
-- 
GitLab