I'm using puppetlabs/firewall.
I need to create following iptable rules:
iptables -A PREROUTING -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 8443
My manifests is
firewall { '001 default redirection policy' :
table => 'nat',
chain => 'PREROUTING',
proto => 'tcp',
dport => '443',
jump => 'REDIRECT',
toports => '8443'
}
But, puppetlabs/firewall creates following iptable rules:
iptables -A PREROUTING -p tcp -m multiport --dports 443 -m comment --comment "001 default
