Disable save of iptables on package install

iptables rules should not be saved on install
of iptables-persistent as rules may leak from
your build environment into your vms.
Use DISTRO_NAME in this element.

Change-Id: I0d61c5453804ef8671ea91b2594f218958b5068f
This commit is contained in:
Therese McHale 2014-11-19 20:19:38 +00:00
parent 0884c8e4d6
commit 6dcd96a724
2 changed files with 10 additions and 2 deletions

View File

@ -4,9 +4,8 @@ set -o pipefail
install-packages iptables
DISTRO=`lsb_release -si` || true
if [[ "Debian Ubuntu" =~ $DISTRO ]]; then
if [[ "ubuntu debian" =~ "$DISTRO_NAME" ]]; then
# Note in later versions will
# need netfilter-persistent package
install-packages iptables-persistent

View File

@ -0,0 +1,9 @@
#!/bin/bash
set -eux
set -o pipefail
if [[ "ubuntu debian" =~ "$DISTRO_NAME" ]]; then
# Disable save of iptables rules on package install
debconf-set-selections <<< "iptables-persistent iptables-persistent/autosave_v4 boolean false"
debconf-set-selections <<< "iptables-persistent iptables-persistent/autosave_v6 boolean false"
fi