crans/scripts
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Sila n'a plus besoin d'un firewall spcifique au proxy

Browse source 
darcs-hash:20080913110205-ffbb2-c6c1fce2fe4ef4f96de3adf73ea89953b6d9589e.gz
This commit is contained in:
Nicolas Dandrimont 2008-09-13 13:02:05 +02:00
parent 92ca7aaf5b
commit 4ce8fcc001
1 changed files with 0 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

17
gestion/gen_confs/firewall.py
View file

@ -1151,23 +1151,6 @@ class firewall_vert(firewall_crans) :
iptables("-P FORWARD DROP") iptables("-P FORWARD DROP")
print OK print OK
class firewall_sila(firewall_rouge):
"""Comme pour rouge, avec le proxy transparent en plus"""
def mangle_table(self):
# Pour le proxy transparent
iptables("-t mangle -F PREROUTING")
iptables("-t mangle -i crans.2 -A PREROUTING -p tcp --destination-port 3128 " +
"--destination 10.231.136.10 " +
"-m mac --mac-source %s " % mac_komaz +
"-j MARK --set-mark %s" % conf_fw.mark['proxy'])
iptables("-t mangle -A PREROUTING -m mark --mark %s -j ACCEPT" % conf_fw.mark['proxy'])
def nat_table(self):
firewall_rouge.nat_table(self)
# Pour le proxy transparent
iptables("-t nat -I PREROUTING -i crans.2 -m mark --mark %s -j ACCEPT" % conf_fw.mark['proxy'])
class firewall_sable(firewall_rouge): class firewall_sable(firewall_rouge):
"""Comme pour rouge, avec le proxy transparent en plus""" """Comme pour rouge, avec le proxy transparent en plus"""