Merge pull request #427 from stesie/fix-set_mark-limit

Don't arbitrarily limit set_mark to certain chains
xbezdick · Dec 16, 2014 · 9c8a2dc · 9c8a2dc
2 parents 354d5e7 + edcc4ba
commit 9c8a2dc
Showing 1 changed file with 1 addition and 2 deletions.
diff --git a/lib/puppet/type/firewall.rb b/lib/puppet/type/firewall.rb
@@ -1074,10 +1074,9 @@ def should_to_s(value)
 
     if value(:set_mark)
       unless value(:jump).to_s  =~ /MARK/ &&
-             value(:chain).to_s =~ /PREROUTING|OUTPUT/ &&
              value(:table).to_s =~ /mangle/
         self.fail "Parameter set_mark only applies to " \
-          "the PREROUTING or OUTPUT chain of the mangle table and when jump => MARK"
+          "the mangle table and when jump => MARK"
       end
     end