From 1a78ace4e089657dc8f216fbb5d0ac06235bafd5 Mon Sep 17 00:00:00 2001
From: Etienne Chove <chove@crans.org>
Date: Mon, 26 Jan 2009 11:41:57 +0100
Subject: [PATCH] ajout de ssh2

darcs-hash:20090126104157-c6320-d03b7674729b063a348e673b058d4d8fe2248f25.gz
---
 gestion/gen_confs/firewall.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/gestion/gen_confs/firewall.py b/gestion/gen_confs/firewall.py
index 2ede30ce..0f78452e 100755
--- a/gestion/gen_confs/firewall.py
+++ b/gestion/gen_confs/firewall.py
@@ -633,6 +633,8 @@ class firewall_komaz(firewall_crans) :
         iptables("-t nat -A PREROUTING -j RESEAUX_NON_ROUTABLES_DST")
         iptables("-t nat -A PREROUTING -i %s -j RESEAUX_NON_ROUTABLES_SRC" % self.eth_ext )
         iptables("-t nat -A PREROUTING -i %s -p udp --destination 138.231.136.1 --destination-port 53 -j DNAT --to-destination 138.231.136.3" % self.eth_ext)
+        iptables("-t nat -A PREROUTING -p tcp -d 138.231.136.2 --dport 22 -j DNAT --to-destination 138.231.136.1:22")
+        iptables("-t nat -A PREROUTING -p tcp -d 138.231.136.2 --dport 443 -j DNAT --to-destination 138.231.136.1:22")
         iptables("-t nat -A PREROUTING -i %s -j ACCEPT" % self.eth_ext )
         iptables("-t nat -A PREROUTING -s %s -j ACCEPT" % self.zone_serveur )
         iptables("-t nat -A PREROUTING -d %s -j ACCEPT" % self.zone_serveur )