From 4f0d379ade4c0567b2c485b1e026479583220d88 Mon Sep 17 00:00:00 2001
From: bos <none>
Date: Sat, 8 Sep 2007 18:03:37 +0200
Subject: [PATCH] On bloque avant d'activer le routage

darcs-hash:20070908160337-c992d-01666bd87915175cf47713ed9c009903faa65656.gz
---
 utils/webmail_freebox | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/utils/webmail_freebox b/utils/webmail_freebox
index 4fb59b50..1e9a6c30 100755
--- a/utils/webmail_freebox
+++ b/utils/webmail_freebox
@@ -8,11 +8,13 @@
 # le routage et de vider le firewall quand vous n'en avez
 # plus besoin
 
-echo 1 >> /proc/sys/net/ipv4/ip_forward
 
 iptables -F
 iptables -t nat -F
 iptables -t mangle -F
+iptables -P FORWARD DROP
+
+echo 1 >> /proc/sys/net/ipv4/ip_forward
 
 iptables -A FORWARD -d 138.231.136.3 -p tcp --dport 80 -j ACCEPT
 iptables -A FORWARD -s 138.231.136.3 -p tcp --sport 80 -j ACCEPT
@@ -25,4 +27,3 @@ iptables -t nat -A POSTROUTING -d 138.231.136.3 -j SNAT --to-source 138.231.136.
 
 iptables -t nat -A PREROUTING -d 82.225.39.54 -p tcp --dport 443 -j DNAT --to-destination 138.231.136.3
 iptables -t nat -A POSTROUTING -d 138.231.136.3 -j SNAT --to-source 138.231.136.9
-