Ack, the client side subsitution code is too blunt, had to change the

names.

Ack, the client side subsitution code is too blunt, had to change the
names.
32adb956 · Leigh B Stoller · 5ab5f8d5 · 32adb956 · 32adb956
Commit 32adb956 authored Mar 31, 2014 by Leigh B Stoller
--- a/firewall/initfwvars.pl.in
+++ b/firewall/initfwvars.pl.in
@@ -177,12 +177,12 @@ if ($VIRTNODE_NETWORK =~ /^(\d+\.\d+\.\d+)\.0$/) {
 #
 # Sorry these are hardwired. 
 #
-my $EMULAB_VCNET_BOSS = "172.17.254.254";
+my $EMULAB_VCBOSS = "172.17.254.254";
-my $EMULAB_VCNET_OPS  = "172.17.253.254";
+my $EMULAB_VCOPS  = "172.17.253.254";
 $str = "replace into default_firewall_vars values ".
-    "('EMULAB_VCNET_BOSS', '$EMULAB_VCNET_BOSS'), ".
+    "('EMULAB_VCBOSS', '$EMULAB_VCBOSS'), ".
-    "('EMULAB_VCNET_OPS',  '$EMULAB_VCNET_OPS')";
+    "('EMULAB_VCOPS',  '$EMULAB_VCOPS')";
 print "$str\n"
    if (!$doit);

--- a/firewall/iptables-fw-domU-rules
+++ b/firewall/iptables-fw-domU-rules
@@ -83,7 +83,7 @@ iptables -A OUTSIDE -s EMULAB_GWIP,EMULAB_VGWIP -j ACCEPT # BASIC,CLOSED,ELABINE
 # On a non-segmented control network (like an IG rack), boss/ops
 # have aliases on the virtual node network. Allows these though.
-iptables -A OUTSIDE -s EMULAB_VCNET_BOSS,EMULAB_VCNET_OPS -j ACCEPT # BASIC,CLOSED,ELABINELAB
+iptables -A OUTSIDE -s EMULAB_VCBOSS,EMULAB_VCOPS -j ACCEPT # BASIC,CLOSED,ELABINELAB
 #
 # No one on the inside can talk to other experiments' nodes and visa-versa.