From c70aa0ec46f09c628fcb0a1ba628897f7e2dc659 Mon Sep 17 00:00:00 2001
From: bernat <none>
Date: Mon, 15 Aug 2005 14:43:20 +0200
Subject: [PATCH] Putain de virus qui floodent rouge...

darcs-hash:20050815124320-d1718-1ef5508a8935c9e86cb0835c47761e7b0e9e133d.gz
---
 gestion/gen_confs/firewall.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gestion/gen_confs/firewall.py b/gestion/gen_confs/firewall.py
index ccad453a..9bb1e753 100755
--- a/gestion/gen_confs/firewall.py
+++ b/gestion/gen_confs/firewall.py
@@ -465,7 +465,7 @@ class firewall_komaz(firewall_crans) :
         iptables("-t nat -A PREROUTING -i %s -j ACCEPT" % self.eth_ext )
         iptables("-t nat -A PREROUTING -s %s -j ACCEPT" % self.zone_serveur )
         iptables("-t nat -A PREROUTING -d %s -j ACCEPT" % self.zone_serveur )
-        iptables("-t nat -A PREROUTING -i %s -p tcp --dport 80 -s ! %s -j DNAT --to-destination 138.231.136.3:80" % (self.eth_int, self.zone_serveur) )
+        iptables("-t nat -A PREROUTING -i %s -p tcp --dport 80 -s ! %s -m limit --limit 50/minute -j DNAT --to-destination 138.231.136.3:80" % (self.eth_int, self.zone_serveur) )
         iptables("-t nat -A POSTROUTING -o %s -p tcp --dport 80 -s 138.231.136.0/21 -d 138.231.136.3 -j SNAT --to-source 138.231.136.4" % self.eth_int )
         iptables("-t nat -A PREROUTING -j TEST_MAC-IP")
         iptables("-t nat -P PREROUTING DROP")