[firewall] forward de syslog et https pour bornes

https servira pour l'acs.
2013-06-12 18:11:11 +02:00 · 2013-06-12 18:11:11 +02:00 · 827f707cd9
commit 827f707cd9
parent b04a9e64f5
1 changed files with 3 additions and 0 deletions
--- a/gestion/gen_confs/firewall4.py
+++ b/gestion/gen_confs/firewall4.py
@ -873,6 +873,9 @@ class firewall_komaz(firewall_base_routeur):
                    if config.firewall.ports_default[proto]['input']:
                        self.add(table, chain, '-p %s -d %s -m multiport --dports %s -j RETURN' % (proto, net, ','.join( format_port(port) for port in config.firewall.ports_default[proto]['input'])))

+            # TODO faire un truc plus propre (config.py ?) -- b2moo
+            # syslog et https
+            self.add(table, chain, '-p udp -s 138.231.148.0/24 -m multiport --dports 443,514 -j RETURN')
            for machine in self.machines():
                for ip in machine['ipHostNumber']:
                    if 'portTCPout' in machine.attrs.keys():