From 78a2a7b13f6ed308e97c07cf6c11256926c88165 Mon Sep 17 00:00:00 2001
From: toby <toby@wit.com>
Date: Wed, 1 May 2019 05:04:29 +0000
Subject: [PATCH] better comments on firewall rules

---
 files/firewall | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/files/firewall b/files/firewall
index ab9e94f..0eabdd1 100755
--- a/files/firewall
+++ b/files/firewall
@@ -24,8 +24,8 @@ case $1 in
         iptables -A INPUT                                                   -p icmp                                                  -j ACCEPT   -m comment --comment "allow pings"
 
        ## frr local service connections
-        iptables -A INPUT -i lo                           -m multiport      -p tcp   --sports  2600:2618                             -j ACCEPT   -m comment --comment "local ceph osd traffic"
-        iptables -A INPUT -i lo                           -m multiport      -p tcp   --dports  2600:2618                             -j ACCEPT   -m comment --comment "local ceph osd traffic"
+        iptables -A INPUT -i lo                           -m multiport      -p tcp   --sports  2600:2618                             -j ACCEPT   -m comment --comment "local frr daemon vtys"
+        iptables -A INPUT -i lo                           -m multiport      -p tcp   --dports  2600:2618                             -j ACCEPT   -m comment --comment "local frr daemon vtys"
 
        ## local ceph osd services
         iptables -A INPUT -i lo                           -m multiport      -p tcp   --sports  6800:7300                             -j ACCEPT   -m comment --comment "local ceph osd traffic"