From 827f707cd9871488a985891f0d587a429365d5a8 Mon Sep 17 00:00:00 2001
From: Daniel STAN <daniel.stan@crans.org>
Date: Wed, 12 Jun 2013 18:11:11 +0200
Subject: [PATCH] [firewall] forward de syslog et https pour bornes

https servira pour l'acs.
---
 gestion/gen_confs/firewall4.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/gestion/gen_confs/firewall4.py b/gestion/gen_confs/firewall4.py
index e1b7409d..7142f925 100755
--- a/gestion/gen_confs/firewall4.py
+++ b/gestion/gen_confs/firewall4.py
@@ -873,6 +873,9 @@ class firewall_komaz(firewall_base_routeur):
                     if config.firewall.ports_default[proto]['input']:
                         self.add(table, chain, '-p %s -d %s -m multiport --dports %s -j RETURN' % (proto, net, ','.join( format_port(port) for port in config.firewall.ports_default[proto]['input'])))
 
+            # TODO faire un truc plus propre (config.py ?) -- b2moo
+            # syslog et https
+            self.add(table, chain, '-p udp -s 138.231.148.0/24 -m multiport --dports 443,514 -j RETURN')
             for machine in self.machines():
                 for ip in machine['ipHostNumber']:
                     if 'portTCPout' in machine.attrs.keys():