From 8684ae51c0da956ed71533a777780708f4c02698 Mon Sep 17 00:00:00 2001
From: Remi Bergsma <github@remi.nl>
Date: Mon, 3 Dec 2018 12:09:53 +0100
Subject: [PATCH] Fix conntrackd firewall port

---
 .../patches/centos7/opt/cosmic/router/bin/cs/firewall.py      | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/cosmic-core/systemvm/patches/centos7/opt/cosmic/router/bin/cs/firewall.py b/cosmic-core/systemvm/patches/centos7/opt/cosmic/router/bin/cs/firewall.py
index 43417ebc5e..92f4d9d865 100644
--- a/cosmic-core/systemvm/patches/centos7/opt/cosmic/router/bin/cs/firewall.py
+++ b/cosmic-core/systemvm/patches/centos7/opt/cosmic/router/bin/cs/firewall.py
@@ -140,8 +140,8 @@ def add_sync_vpc_rules(self, device):
         if self.config.get_advert_method() == "UNICAST":
             self.fw.append(["filter", "", "-A INPUT -i %s -p vrrp -j ACCEPT" % device])
             self.fw.append(["filter", "", "-A OUTPUT -o %s -p vrrp -j ACCEPT" % device])
-            self.fw.append(["filter", "", "-A INPUT -i %s -p 3780 -j ACCEPT" % device])
-            self.fw.append(["filter", "", "-A OUTPUT -o %s -p 3780 -j ACCEPT" % device])
+            self.fw.append(["filter", "", "-A INPUT -i %s -p tcp --dport 3780 -j ACCEPT" % device])
+            self.fw.append(["filter", "", "-A OUTPUT -o %s -p tcp --dport 3780 -j ACCEPT" % device])
 
     def add_public_vpc_rules(self, device):
         logging.info("Configuring Public VPC rules")