aurore/aurore-firewall
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Extra nat et accès internet pour le routeur itself

Browse source
This commit is contained in:
Gabriel Detraz 2019-09-14 12:19:28 +02:00 committed by root
parent b35b191904
commit 0120cfbb5f
2 changed files with 8 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

5
main.py
View file

@ -510,6 +510,10 @@ class iptables:
for interface, pub_ip_range in nat_type['interfaces_ip_to_nat'].items():
self.add_in_subtable("nat4", subtable, '-s ' + nat_prive_ip_plage + ' -o %s -j SNAT --to-source ' % (interface,) + '.'.join(pub_ip_range.split('.')[:3]) + '.' + str(250 + int(nat_prive_ip_plage.split('.')[1][0])))
### Extra-nat (ex : Pour que le routeur ait accès à internet)
for ip_source, ip_to_nat in nat_type['extra_nat'].items():
self.add_in_subtable("nat4", subtable, '-s ' + ip_source + ' -j SNAT --to-source ' + ip_to_nat)
def gen_mangle(self, empty=False):
"""Génération de la chaine mangle"""
self.init_mangle("PREROUTING")
@ -537,7 +541,6 @@ class iptables:
def restore_iptables(self, mode='4'):
"""Restoration de l'iptable générée"""
return
if mode == '6':
global_chain = self.global_chain6
command_to_execute = ["sudo","-n","/sbin/ip6tables-restore"]