Commit 24ff3983 authored by Valentin Samir's avatar Valentin Samir
Browse files

[firewall4] Si on mets les règles utilisant les module owner avant la...

[firewall4] Si on mets les règles utilisant les module owner avant la conntrack, ça ne marche pas...
parent 43627558
......@@ -855,10 +855,10 @@ class firewall_zamok(firewall_base):
chain = 'OUTPUT'
self.add(table, chain , '-d 224.0.0.0/4 -j DROP')
admin_vlan_chain = self.admin_vlan(table)
self.add(table, chain, '-m state --state RELATED,ESTABLISHED -j ACCEPT')
for net in NETs['adm']:
self.add(table, chain, '-d %s -j %s' % (net, admin_vlan_chain))
self.add(table, chain, '-o lo -j ACCEPT')
self.add(table, chain, '-m state --state RELATED,ESTABLISHED -j ACCEPT')
self.add(table, chain, '-j %s' % self.blacklist_output(table))
return
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment