Compilation results for ganeti2047.codfw.wmnet: System changes detected

You can retrieve this result from host.json.

Catalog differences

Summary

Total Resources:	3120
Resources added:	12
Resources removed:	0
Resources modified:	99
Change percentage:	3.56%

Resources only in the new catalog

Ferm::Service[ssh_from_cumin_masters]
Ferm::Service[ganeti_confd_cluster]
Ferm::Service[full_monitoring_metrics_access_udp]
Ferm::Service[ganeti_rapi_cluster]
Ferm::Service[ganeti_migration]
Ferm::Service[ganeti_mond_cluster]
Ferm::Service[ssh_from_bastion]
Ferm::Service[ganeti_prometheus_exporter]
Ferm::Service[ganeti_ssh_cluster]
Ferm::Service[full_monitoring_metrics_access_tcp]
Ferm::Service[ganeti_drbd]
Ferm::Service[ganeti_noded_cluster]

Resources modified

File[/etc/nftables/input/10_ganeti_drbd.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ganeti_drbd.nft].orig
+++ File[/etc/nftables/input/10_ganeti_drbd.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/BASTION_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/BASTION_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/BASTION_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/CACHES_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/CACHES_ipv4.nft].orig
+++ File[/etc/nftables/sets/CACHES_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/LABS_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/LABS_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/LABS_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/LINK_LOCAL_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/LINK_LOCAL_ipv4.nft].orig
+++ File[/etc/nftables/sets/LINK_LOCAL_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/KAFKAMON_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/KAFKAMON_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/KAFKAMON_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/ZOOKEEPER_HOSTS_MAIN_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/ZOOKEEPER_HOSTS_MAIN_ipv6.nft].orig
+++ File[/etc/nftables/sets/ZOOKEEPER_HOSTS_MAIN_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MYSQL_ROOT_CLIENTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/MYSQL_ROOT_CLIENTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/MYSQL_ROOT_CLIENTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ssh_from_bastion]

Parameters differences:

--- Ferm::Service[ssh_from_bastion].orig
+++ Ferm::Service[ssh_from_bastion]

+    proto   => tcp
+    prio    => 10
+    ensure  => present
+    notrack => False
+    port    => 22
+    desc    => 
+    srange  => ['208.80.155.110', '2620:0:861:4:208:80:155:110', '208.80.154.7', '2620:0:861:1:208:80:154:7', '208.80.153.110', '2a02:ec80:300:3:185:15:59:99', '185.15.59.99', '2620:0:860:4:208:80:153:110', '103.102.166.6', '2001:df2:e500:1:103:102:166:6', '185.15.58.6', '2a02:ec80:600:1:185:15:58:6', '195.200.68.99', '2a02:ec80:700:3:195:200:68:99']

Ferm::Service[ganeti_noded_cluster]

Parameters differences:

--- Ferm::Service[ganeti_noded_cluster].orig
+++ Ferm::Service[ganeti_noded_cluster]

+    proto   => tcp
+    prio    => 10
+    ensure  => present
+    notrack => False
+    port    => 1811
+    desc    => 
+    srange  => ['ganeti2025.codfw.wmnet', 'ganeti2026.codfw.wmnet', 'ganeti2027.codfw.wmnet', 'ganeti2028.codfw.wmnet', 'ganeti2029.codfw.wmnet', 'ganeti2030.codfw.wmnet', 'ganeti2031.codfw.wmnet', 'ganeti2032.codfw.wmnet', 'ganeti2035.codfw.wmnet', 'ganeti2036.codfw.wmnet', 'ganeti2037.codfw.wmnet', 'ganeti2038.codfw.wmnet', 'ganeti2039.codfw.wmnet', 'ganeti2040.codfw.wmnet', 'ganeti2041.codfw.wmnet', 'ganeti2042.codfw.wmnet', 'ganeti2043.codfw.wmnet', 'ganeti2044.codfw.wmnet', 'ganeti2045.codfw.wmnet', 'ganeti2046.codfw.wmnet', 'ganeti2047.codfw.wmnet', 'ganeti2048.codfw.wmnet', 'ganeti2049.codfw.wmnet', 'ganeti2050.codfw.wmnet']

File[/etc/nftables/sets/MW_APPSERVER_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/MW_APPSERVER_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/MW_APPSERVER_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ganeti_confd_cluster]

Parameters differences:

--- Ferm::Service[ganeti_confd_cluster].orig
+++ Ferm::Service[ganeti_confd_cluster]

+    proto   => udp
+    prio    => 10
+    ensure  => present
+    notrack => False
+    port    => 1814
+    desc    => 
+    srange  => ['ganeti2025.codfw.wmnet', 'ganeti2026.codfw.wmnet', 'ganeti2027.codfw.wmnet', 'ganeti2028.codfw.wmnet', 'ganeti2029.codfw.wmnet', 'ganeti2030.codfw.wmnet', 'ganeti2031.codfw.wmnet', 'ganeti2032.codfw.wmnet', 'ganeti2035.codfw.wmnet', 'ganeti2036.codfw.wmnet', 'ganeti2037.codfw.wmnet', 'ganeti2038.codfw.wmnet', 'ganeti2039.codfw.wmnet', 'ganeti2040.codfw.wmnet', 'ganeti2041.codfw.wmnet', 'ganeti2042.codfw.wmnet', 'ganeti2043.codfw.wmnet', 'ganeti2044.codfw.wmnet', 'ganeti2045.codfw.wmnet', 'ganeti2046.codfw.wmnet', 'ganeti2047.codfw.wmnet', 'ganeti2048.codfw.wmnet', 'ganeti2049.codfw.wmnet', 'ganeti2050.codfw.wmnet']

File[/etc/nftables/sets/INSTALL_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/INSTALL_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/INSTALL_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_ssh-from-cumin-masters.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ssh-from-cumin-masters.nft].orig
+++ File[/etc/nftables/input/10_ssh-from-cumin-masters.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/DEPLOYMENT_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/DEPLOYMENT_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/DEPLOYMENT_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ssh_from_cumin_masters]

Parameters differences:

--- Ferm::Service[ssh_from_cumin_masters].orig
+++ Ferm::Service[ssh_from_cumin_masters]

+    proto    => tcp
+    prio     => 10
+    ensure   => present
+    notrack  => False
+    port     => 22
+    desc     => 
+    src_sets => ['CUMIN_MASTERS']

File[/etc/nftables/sets/ZOOKEEPER_HOSTS_MAIN_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/ZOOKEEPER_HOSTS_MAIN_ipv4.nft].orig
+++ File[/etc/nftables/sets/ZOOKEEPER_HOSTS_MAIN_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/CUMIN_MASTERS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/CUMIN_MASTERS_ipv4.nft].orig
+++ File[/etc/nftables/sets/CUMIN_MASTERS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/LABS_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/LABS_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/LABS_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/LABSTORE_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/LABSTORE_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/LABSTORE_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/100_base_puppet.nft]

Parameters differences:

--- File[/etc/nftables/100_base_puppet.nft].orig
+++ File[/etc/nftables/100_base_puppet.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/DSE_KUBEPODS_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/DSE_KUBEPODS_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/DSE_KUBEPODS_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_ganeti_ssh_cluster.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ganeti_ssh_cluster.nft].orig
+++ File[/etc/nftables/input/10_ganeti_ssh_cluster.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MGMT_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/MGMT_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/MGMT_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/CLOUD_PRIVATE_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/CLOUD_PRIVATE_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/CLOUD_PRIVATE_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/INTERNAL_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/INTERNAL_ipv6.nft].orig
+++ File[/etc/nftables/sets/INTERNAL_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MLSERVE_KUBEPODS_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/MLSERVE_KUBEPODS_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/MLSERVE_KUBEPODS_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/PRODUCTION_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/PRODUCTION_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/PRODUCTION_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/PRODUCTION_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/PRODUCTION_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/PRODUCTION_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/KAFKA_BROKERS_JUMBO_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/KAFKA_BROKERS_JUMBO_ipv4.nft].orig
+++ File[/etc/nftables/sets/KAFKA_BROKERS_JUMBO_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/ZOOKEEPER_FLINK_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/ZOOKEEPER_FLINK_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/ZOOKEEPER_FLINK_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/WIKIKUBE_KUBEPODS_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/WIKIKUBE_KUBEPODS_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/WIKIKUBE_KUBEPODS_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/AUX_KUBEPODS_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/AUX_KUBEPODS_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/AUX_KUBEPODS_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/CLOUD_NETWORKS_PUBLIC_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/CLOUD_NETWORKS_PUBLIC_ipv4.nft].orig
+++ File[/etc/nftables/sets/CLOUD_NETWORKS_PUBLIC_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/ZOOKEEPER_FLINK_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/ZOOKEEPER_FLINK_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/ZOOKEEPER_FLINK_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/KAFKA_BROKERS_JUMBO_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/KAFKA_BROKERS_JUMBO_ipv6.nft].orig
+++ File[/etc/nftables/sets/KAFKA_BROKERS_JUMBO_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/DOMAIN_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/DOMAIN_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/DOMAIN_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/KAFKA_BROKERS_LOGGING_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/KAFKA_BROKERS_LOGGING_ipv4.nft].orig
+++ File[/etc/nftables/sets/KAFKA_BROKERS_LOGGING_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_ganeti_mond_cluster.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ganeti_mond_cluster.nft].orig
+++ File[/etc/nftables/input/10_ganeti_mond_cluster.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/NETWORK_INFRA_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/NETWORK_INFRA_ipv6.nft].orig
+++ File[/etc/nftables/sets/NETWORK_INFRA_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ganeti_ssh_cluster]

Parameters differences:

--- Ferm::Service[ganeti_ssh_cluster].orig
+++ Ferm::Service[ganeti_ssh_cluster]

+    proto   => tcp
+    prio    => 10
+    ensure  => present
+    notrack => False
+    port    => 22
+    desc    => 
+    srange  => ['ganeti2025.codfw.wmnet', 'ganeti2026.codfw.wmnet', 'ganeti2027.codfw.wmnet', 'ganeti2028.codfw.wmnet', 'ganeti2029.codfw.wmnet', 'ganeti2030.codfw.wmnet', 'ganeti2031.codfw.wmnet', 'ganeti2032.codfw.wmnet', 'ganeti2035.codfw.wmnet', 'ganeti2036.codfw.wmnet', 'ganeti2037.codfw.wmnet', 'ganeti2038.codfw.wmnet', 'ganeti2039.codfw.wmnet', 'ganeti2040.codfw.wmnet', 'ganeti2041.codfw.wmnet', 'ganeti2042.codfw.wmnet', 'ganeti2043.codfw.wmnet', 'ganeti2044.codfw.wmnet', 'ganeti2045.codfw.wmnet', 'ganeti2046.codfw.wmnet', 'ganeti2047.codfw.wmnet', 'ganeti2048.codfw.wmnet', 'ganeti2049.codfw.wmnet', 'ganeti2050.codfw.wmnet']

File[/etc/nftables/sets/CLOUD_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/CLOUD_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/CLOUD_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/DSE_KUBEPODS_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/DSE_KUBEPODS_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/DSE_KUBEPODS_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MLSERVE_KUBEPODS_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/MLSERVE_KUBEPODS_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/MLSERVE_KUBEPODS_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/LABSTORE_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/LABSTORE_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/LABSTORE_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[full_monitoring_metrics_access_udp]

Parameters differences:

--- Ferm::Service[full_monitoring_metrics_access_udp].orig
+++ Ferm::Service[full_monitoring_metrics_access_udp]

+    proto      => udp
+    prio       => 10
+    ensure     => present
+    notrack    => False
+    desc       => 
+    srange     => ['prometheus2005.codfw.wmnet', 'prometheus2006.codfw.wmnet', 'prometheus2007.codfw.wmnet', 'prometheus2008.codfw.wmnet', '208.80.154.78', '2620:0:861:3:208:80:154:78', '208.80.153.42', '2620:0:860:2:208:80:153:42']
+    port_range => [1, 65535]

File[/etc/nftables/input/10_ganeti_migration.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ganeti_migration.nft].orig
+++ File[/etc/nftables/input/10_ganeti_migration.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_ganeti_confd_cluster.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ganeti_confd_cluster.nft].orig
+++ File[/etc/nftables/input/10_ganeti_confd_cluster.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/CUMIN_MASTERS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/CUMIN_MASTERS_ipv6.nft].orig
+++ File[/etc/nftables/sets/CUMIN_MASTERS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/INTERNAL_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/INTERNAL_ipv4.nft].orig
+++ File[/etc/nftables/sets/INTERNAL_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/CLOUD_PRIVATE_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/CLOUD_PRIVATE_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/CLOUD_PRIVATE_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/KAFKA_BROKERS_LOGGING_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/KAFKA_BROKERS_LOGGING_ipv6.nft].orig
+++ File[/etc/nftables/sets/KAFKA_BROKERS_LOGGING_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MONITORING_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/MONITORING_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/MONITORING_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/SANDBOX_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/SANDBOX_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/SANDBOX_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/CLOUD_NETWORKS_PUBLIC_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/CLOUD_NETWORKS_PUBLIC_ipv6.nft].orig
+++ File[/etc/nftables/sets/CLOUD_NETWORKS_PUBLIC_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_ganeti-prometheus-exporter.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ganeti-prometheus-exporter.nft].orig
+++ File[/etc/nftables/input/10_ganeti-prometheus-exporter.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[full_monitoring_metrics_access_tcp]

Parameters differences:

--- Ferm::Service[full_monitoring_metrics_access_tcp].orig
+++ Ferm::Service[full_monitoring_metrics_access_tcp]

+    proto      => tcp
+    prio       => 10
+    ensure     => present
+    notrack    => False
+    desc       => 
+    srange     => ['prometheus2005.codfw.wmnet', 'prometheus2006.codfw.wmnet', 'prometheus2007.codfw.wmnet', 'prometheus2008.codfw.wmnet', '208.80.154.78', '2620:0:861:3:208:80:154:78', '208.80.153.42', '2620:0:860:2:208:80:153:42']
+    port_range => [1, 65535]

File[/etc/nftables/sets/MONITORING_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/MONITORING_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/MONITORING_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/STAGING_KUBEPODS_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/STAGING_KUBEPODS_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/STAGING_KUBEPODS_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/BASTION_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/BASTION_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/BASTION_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_ssh-from-bastion.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ssh-from-bastion.nft].orig
+++ File[/etc/nftables/input/10_ssh-from-bastion.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/STAGING_KUBEPODS_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/STAGING_KUBEPODS_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/STAGING_KUBEPODS_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/ANALYTICS_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/ANALYTICS_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/ANALYTICS_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/AUX_KUBEPODS_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/AUX_KUBEPODS_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/AUX_KUBEPODS_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_ganeti_rapi_cluster.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ganeti_rapi_cluster.nft].orig
+++ File[/etc/nftables/input/10_ganeti_rapi_cluster.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ganeti_drbd]

Parameters differences:

--- Ferm::Service[ganeti_drbd].orig
+++ Ferm::Service[ganeti_drbd]

+    proto      => tcp
+    prio       => 10
+    ensure     => present
+    notrack    => False
+    desc       => 
+    srange     => ['ganeti2025.codfw.wmnet', 'ganeti2026.codfw.wmnet', 'ganeti2027.codfw.wmnet', 'ganeti2028.codfw.wmnet', 'ganeti2029.codfw.wmnet', 'ganeti2030.codfw.wmnet', 'ganeti2031.codfw.wmnet', 'ganeti2032.codfw.wmnet', 'ganeti2035.codfw.wmnet', 'ganeti2036.codfw.wmnet', 'ganeti2037.codfw.wmnet', 'ganeti2038.codfw.wmnet', 'ganeti2039.codfw.wmnet', 'ganeti2040.codfw.wmnet', 'ganeti2041.codfw.wmnet', 'ganeti2042.codfw.wmnet', 'ganeti2043.codfw.wmnet', 'ganeti2044.codfw.wmnet', 'ganeti2045.codfw.wmnet', 'ganeti2046.codfw.wmnet', 'ganeti2047.codfw.wmnet', 'ganeti2048.codfw.wmnet', 'ganeti2049.codfw.wmnet', 'ganeti2050.codfw.wmnet']
+    port_range => [11000, 14999]

File[/etc/nftables/sets/MYSQL_ROOT_CLIENTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/MYSQL_ROOT_CLIENTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/MYSQL_ROOT_CLIENTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/DEPLOYMENT_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/DEPLOYMENT_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/DEPLOYMENT_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MW_APPSERVER_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/MW_APPSERVER_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/MW_APPSERVER_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/SANDBOX_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/SANDBOX_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/SANDBOX_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/CACHES_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/CACHES_ipv6.nft].orig
+++ File[/etc/nftables/sets/CACHES_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_full-monitoring-metrics-access-udp.nft]

Parameters differences:

--- File[/etc/nftables/input/10_full-monitoring-metrics-access-udp.nft].orig
+++ File[/etc/nftables/input/10_full-monitoring-metrics-access-udp.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/NETWORK_INFRA_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/NETWORK_INFRA_ipv4.nft].orig
+++ File[/etc/nftables/sets/NETWORK_INFRA_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/FRACK_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/FRACK_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/FRACK_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MLSTAGE_KUBEPODS_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/MLSTAGE_KUBEPODS_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/MLSTAGE_KUBEPODS_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/KAFKAMON_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/KAFKAMON_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/KAFKAMON_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/DRUID_PUBLIC_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/DRUID_PUBLIC_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/DRUID_PUBLIC_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/ANALYTICS_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/ANALYTICS_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/ANALYTICS_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/LOAD_BALANCER_HEALTH_CHECKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/LOAD_BALANCER_HEALTH_CHECKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/LOAD_BALANCER_HEALTH_CHECKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ganeti_migration]

Parameters differences:

--- Ferm::Service[ganeti_migration].orig
+++ Ferm::Service[ganeti_migration]

+    proto   => tcp
+    prio    => 10
+    ensure  => present
+    notrack => False
+    port    => 8102
+    desc    => 
+    srange  => ['ganeti2025.codfw.wmnet', 'ganeti2026.codfw.wmnet', 'ganeti2027.codfw.wmnet', 'ganeti2028.codfw.wmnet', 'ganeti2029.codfw.wmnet', 'ganeti2030.codfw.wmnet', 'ganeti2031.codfw.wmnet', 'ganeti2032.codfw.wmnet', 'ganeti2035.codfw.wmnet', 'ganeti2036.codfw.wmnet', 'ganeti2037.codfw.wmnet', 'ganeti2038.codfw.wmnet', 'ganeti2039.codfw.wmnet', 'ganeti2040.codfw.wmnet', 'ganeti2041.codfw.wmnet', 'ganeti2042.codfw.wmnet', 'ganeti2043.codfw.wmnet', 'ganeti2044.codfw.wmnet', 'ganeti2045.codfw.wmnet', 'ganeti2046.codfw.wmnet', 'ganeti2047.codfw.wmnet', 'ganeti2048.codfw.wmnet', 'ganeti2049.codfw.wmnet', 'ganeti2050.codfw.wmnet']

File[/etc/nftables/sets/CLOUD_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/CLOUD_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/CLOUD_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/PROMETHEUS_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/PROMETHEUS_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/PROMETHEUS_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/WIKIKUBE_KUBEPODS_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/WIKIKUBE_KUBEPODS_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/WIKIKUBE_KUBEPODS_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MLSTAGE_KUBEPODS_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/MLSTAGE_KUBEPODS_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/MLSTAGE_KUBEPODS_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/LOAD_BALANCER_HEALTH_CHECKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/LOAD_BALANCER_HEALTH_CHECKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/LOAD_BALANCER_HEALTH_CHECKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/MGMT_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/MGMT_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/MGMT_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/KAFKA_BROKERS_MAIN_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/KAFKA_BROKERS_MAIN_ipv6.nft].orig
+++ File[/etc/nftables/sets/KAFKA_BROKERS_MAIN_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_full-monitoring-metrics-access-tcp.nft]

Parameters differences:

--- File[/etc/nftables/input/10_full-monitoring-metrics-access-tcp.nft].orig
+++ File[/etc/nftables/input/10_full-monitoring-metrics-access-tcp.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/LINK_LOCAL_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/LINK_LOCAL_ipv6.nft].orig
+++ File[/etc/nftables/sets/LINK_LOCAL_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ganeti_rapi_cluster]

Parameters differences:

--- Ferm::Service[ganeti_rapi_cluster].orig
+++ Ferm::Service[ganeti_rapi_cluster]

+    proto   => tcp
+    prio    => 10
+    ensure  => present
+    notrack => False
+    port    => 5080
+    desc    => 
+    srange  => ['ganeti2025.codfw.wmnet', 'ganeti2026.codfw.wmnet', 'ganeti2027.codfw.wmnet', 'ganeti2028.codfw.wmnet', 'ganeti2029.codfw.wmnet', 'ganeti2030.codfw.wmnet', 'ganeti2031.codfw.wmnet', 'ganeti2032.codfw.wmnet', 'ganeti2035.codfw.wmnet', 'ganeti2036.codfw.wmnet', 'ganeti2037.codfw.wmnet', 'ganeti2038.codfw.wmnet', 'ganeti2039.codfw.wmnet', 'ganeti2040.codfw.wmnet', 'ganeti2041.codfw.wmnet', 'ganeti2042.codfw.wmnet', 'ganeti2043.codfw.wmnet', 'ganeti2044.codfw.wmnet', 'ganeti2045.codfw.wmnet', 'ganeti2046.codfw.wmnet', 'ganeti2047.codfw.wmnet', 'ganeti2048.codfw.wmnet', 'ganeti2049.codfw.wmnet', 'ganeti2050.codfw.wmnet', 'netbox1003.eqiad.wmnet', 'netbox2003.codfw.wmnet', 'netbox-dev2003.codfw.wmnet', 'netmon1003.wikimedia.org', 'netmon2002.wikimedia.org', 'cumin1003.eqiad.wmnet', 'cumin2002.codfw.wmnet']

File[/etc/nftables/sets/DOMAIN_NETWORKS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/DOMAIN_NETWORKS_ipv6.nft].orig
+++ File[/etc/nftables/sets/DOMAIN_NETWORKS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ganeti_prometheus_exporter]

Parameters differences:

--- Ferm::Service[ganeti_prometheus_exporter].orig
+++ Ferm::Service[ganeti_prometheus_exporter]

+    proto    => tcp
+    prio     => 10
+    ensure   => present
+    notrack  => False
+    port     => 8080
+    desc     => 
+    src_sets => ['PRODUCTION_NETWORKS']

File[/etc/nftables/sets/FRACK_NETWORKS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/FRACK_NETWORKS_ipv4.nft].orig
+++ File[/etc/nftables/sets/FRACK_NETWORKS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/KAFKA_BROKERS_MAIN_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/KAFKA_BROKERS_MAIN_ipv4.nft].orig
+++ File[/etc/nftables/sets/KAFKA_BROKERS_MAIN_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/INSTALL_HOSTS_ipv6.nft]

Parameters differences:

--- File[/etc/nftables/sets/INSTALL_HOSTS_ipv6.nft].orig
+++ File[/etc/nftables/sets/INSTALL_HOSTS_ipv6.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/sets/PROMETHEUS_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/PROMETHEUS_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/PROMETHEUS_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

File[/etc/nftables/input/10_ganeti_noded_cluster.nft]

Parameters differences:

--- File[/etc/nftables/input/10_ganeti_noded_cluster.nft].orig
+++ File[/etc/nftables/input/10_ganeti_noded_cluster.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Ferm::Service[ganeti_mond_cluster]

Parameters differences:

--- Ferm::Service[ganeti_mond_cluster].orig
+++ Ferm::Service[ganeti_mond_cluster]

+    proto   => tcp
+    prio    => 10
+    ensure  => present
+    notrack => False
+    port    => 1815
+    desc    => 
+    srange  => ['ganeti2025.codfw.wmnet', 'ganeti2026.codfw.wmnet', 'ganeti2027.codfw.wmnet', 'ganeti2028.codfw.wmnet', 'ganeti2029.codfw.wmnet', 'ganeti2030.codfw.wmnet', 'ganeti2031.codfw.wmnet', 'ganeti2032.codfw.wmnet', 'ganeti2035.codfw.wmnet', 'ganeti2036.codfw.wmnet', 'ganeti2037.codfw.wmnet', 'ganeti2038.codfw.wmnet', 'ganeti2039.codfw.wmnet', 'ganeti2040.codfw.wmnet', 'ganeti2041.codfw.wmnet', 'ganeti2042.codfw.wmnet', 'ganeti2043.codfw.wmnet', 'ganeti2044.codfw.wmnet', 'ganeti2045.codfw.wmnet', 'ganeti2046.codfw.wmnet', 'ganeti2047.codfw.wmnet', 'ganeti2048.codfw.wmnet', 'ganeti2049.codfw.wmnet', 'ganeti2050.codfw.wmnet']

File[/etc/nftables/sets/DRUID_PUBLIC_HOSTS_ipv4.nft]

Parameters differences:

--- File[/etc/nftables/sets/DRUID_PUBLIC_HOSTS_ipv4.nft].orig
+++ File[/etc/nftables/sets/DRUID_PUBLIC_HOSTS_ipv4.nft]

@@
-    notify => Service[nftables]
+    notify => ['Service[nftables]']

Compilation results for ganeti2047.codfw.wmnet: System changes detected

Catalog differences

Summary

Resources only in the new catalog

Resources modified

Relevant files