Qubes/core-agent-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
77392fd3a9
core-agent-linux/network/iptables-updates-proxy

21 lines
384 B
Plaintext
Raw Normal View History

yum-proxy: use iptables-restore to set firewall rules Simple iptables sometimes returns EBUSY.
2013-08-05 02:08:52 +02:00
#!/bin/sh
yum-proxy: fix stop command - iptables-restore do not accept -D iptables-restore format accept only "-A" command, so remove the rules with direct call to iptables
2014-02-21 13:28:49 +01:00
RULE_FILTER="INPUT -i vif+ -p tcp --dport 8082 -j ACCEPT"
RULE_NAT="PR-QBS-SERVICES -i vif+ -d 10.137.255.254 -p tcp --dport 8082 -j REDIRECT"
yum-proxy: use iptables-restore to set firewall rules Simple iptables sometimes returns EBUSY.
2013-08-05 02:08:52 +02:00
yum-proxy: fix stop command - iptables-restore do not accept -D iptables-restore format accept only "-A" command, so remove the rules with direct call to iptables
2014-02-21 13:28:49 +01:00
if [ "$1" == "start" ]; then
yum-proxy: use iptables-restore to set firewall rules Simple iptables sometimes returns EBUSY.
2013-08-05 02:08:52 +02:00
cat <<__EOF__ | iptables-restore -n
*filter
yum-proxy: fix iptables rules order Add the rules at the beginning of chain, so before final REJECT rule.
2014-03-26 00:02:10 +01:00
-I $RULE_FILTER
yum-proxy: use iptables-restore to set firewall rules Simple iptables sometimes returns EBUSY.
2013-08-05 02:08:52 +02:00
COMMIT
*nat
yum-proxy: fix iptables rules order Add the rules at the beginning of chain, so before final REJECT rule.
2014-03-26 00:02:10 +01:00
-I $RULE_NAT
yum-proxy: use iptables-restore to set firewall rules Simple iptables sometimes returns EBUSY.
2013-08-05 02:08:52 +02:00
COMMIT
__EOF__
yum-proxy: fix stop command - iptables-restore do not accept -D iptables-restore format accept only "-A" command, so remove the rules with direct call to iptables
2014-02-21 13:28:49 +01:00
else
# Remove rules
iptables -D $RULE_FILTER
iptables -t nat -D $RULE_NAT
exit 0
fi
Reference in New Issue Copy Permalink