crans/scripts
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

[firewall_new] On remonte aussi la limite ssh pour les machines des adhérents

Browse source 
Ignore-this: 1eddb79e5226399b7f0511bc6bd9ee7d

darcs-hash:20130107201753-3a55a-276d660bf9ece2a4f604307bea35af66ce319fd7.gz
This commit is contained in:
Valentin Samir 2013-01-07 21:17:53 +01:00
parent 8817dc95b5
commit 5731cc63e5
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
gestion/gen_confs/firewall_new.py
View file

@ -1005,7 +1005,7 @@ class firewall_komaz(firewall_crans) :
# Attention les règles sont à l'envers. Hint '-I'
iptables("-I EXT_VERS_CRANS -p tcp --dport ssh -m state --state NEW -j ACCEPT")
iptables("-I EXT_VERS_CRANS -p tcp --dport ssh -m state --state NEW\
-m recent --name SSH --update --seconds 60 --hitcount 4 --rttl -j DROP")
-m recent --name SSH --update --seconds 30 --hitcount 10 --rttl -j DROP")
iptables("-I EXT_VERS_CRANS -p tcp --dport ssh -m state --state NEW\
-m recent --name SSH --set")