crans/scripts
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

[./gestion/gen_confs/firewall.py] On ne veut pas un acces ssh sur tous les serveurs

Browse source 
darcs-hash:20091113221415-8fbb1-256b02015823d894a4f1af912d3870ba12cb1975.gz
This commit is contained in:
Olivier Huber 2009-11-13 23:14:15 +01:00
parent 330854b95b
commit 45435a5276
1 changed files with 0 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

1
gestion/gen_confs/firewall.py
View file

@ -867,7 +867,6 @@ class firewall_komaz(firewall_crans) :
self.anim.reinit()
print OK
# Attention les règles sont à l'envers. Hint '-I'
iptables("-I EXT_VERS_SERVEURS -p tcp --dport ssh -m state --state NEW -j ACCEPT")
iptables("-I EXT_VERS_SERVEURS -p tcp --dport ssh -m state --state NEW\
-m recent --name SSH --update --seconds 60 --hitcount 4 --rttl -j DROP")
iptables("-I EXT_VERS_SERVEURS -p tcp --dport ssh -m state --state NEW\