crans/scripts
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

[gen_confs/firewall.py] blacklistage sur zamok, corrections

Browse source 
darcs-hash:20100530132203-bd074-e0cb6111ff6f6f54d99c3ff1f63fc2b8587baba8.gz
This commit is contained in:
Antoine Durand-Gasselin 2010-05-30 15:22:03 +02:00
parent 3bb3c56e55
commit 3530aa6b7f
1 changed files with 2 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
gestion/gen_confs/firewall.py
View file

@ -1117,6 +1117,7 @@ class firewall_zamok(firewall_crans) :
def blacklist(self):
"""Fondamentalement, bloque l'accès internet sur zamok aux
adhérents sanctionnés"""
iptables("-F OUTPUT")
self.filter_table()
blacklist_sanctions = ('upload', 'warez', 'p2p', 'autodisc_p2p', 'autodisc_upload', 'bloq')
@ -1131,6 +1132,7 @@ class firewall_zamok(firewall_crans) :
if s in sanctions:
try:
uid = adh.uidNumber()
iptables("-A OUTPUT -m owner --uid-owner %s -d 127.0.0.1/8 -j ACCEPT" % uid)
iptables("-A OUTPUT -m owner --uid-owner %s -d 138.231.136.1/21 -j ACCEPT" % uid)
iptables("-A OUTPUT -m owner --uid-owner %s -d 138.231.144.1/21 -j ACCEPT" % uid)
iptables("-A OUTPUT -m owner --uid-owner %s -j REJECT" % uid)