Redirection de DNS de zamok vers rouge

darcs-hash:20051002115740-d1718-45224e0c9789f65e5a082d77e0f5b62283d0e9b5.gz
2005-10-02 13:57:40 +02:00 · 2005-10-02 13:57:40 +02:00 · 63b0899c7a
commit 63b0899c7a
parent 0d5ff27d1f
1 changed files with 2 additions and 1 deletions
--- a/gestion/gen_confs/firewall.py
+++ b/gestion/gen_confs/firewall.py
@ -16,7 +16,7 @@
 # all source code copies of any software which is or includes a copy or
 # modification of this software.
 #
-# THIS SOFTWARE IS BEING PROVIDED "AS IS", WITHOUT ANY EXPRESS OR
+# THIS SOFTWARE IS BEING PROVIDED "AS IS", WITHOUT ANY EXPRSS OR
 # IMPLIED WARRANTY. IN PARTICULAR, NONE OF THE AUTHORS MAKES ANY
 # REPRESENTATION OR WARRANTY OF ANY KIND CONCERNING THE
 # MERCHANTABILITY OF THIS SOFTWARE OR ITS FITNESS FOR ANY PARTICULAR
@ -462,6 +462,7 @@ class firewall_komaz(firewall_crans) :
        iptables("-t nat -A PREROUTING -s ! %s -j TEST_VIRUS_FLOOD" % self.zone_serveur)
        iptables("-t nat -A PREROUTING -j RESEAUX_NON_ROUTABLES_DST")
        iptables("-t nat -A PREROUTING -i %s -j RESEAUX_NON_ROUTABLES_SRC" % self.eth_ext )
+        iptables("-t nat -A PREROUTING -i %s -p udp --destination 138.231.136.1 --destination-port 53 -j DNAT --to-destination 138.231.136.3" % self.eth_ext)
        iptables("-t nat -A PREROUTING -i %s -j ACCEPT" % self.eth_ext )
        iptables("-t nat -A PREROUTING -s %s -j ACCEPT" % self.zone_serveur )
        iptables("-t nat -A PREROUTING -d %s -j ACCEPT" % self.zone_serveur )