Remove limit on ICMP pings...
This commit is contained in:
parent
1a17daeba4
commit
2495c3270f
11
minifirewall
11
minifirewall
|
@ -285,14 +285,7 @@ for x in $NTPOK
|
||||||
done
|
done
|
||||||
|
|
||||||
# ICMP
|
# ICMP
|
||||||
$IPT -N ICMP_STACK
|
$IPT -A INPUT -p icmp -j ACCEPT
|
||||||
$IPT -A INPUT -p icmp -j ICMP_STACK
|
|
||||||
# Gestion des Pings de l'exterieur (on autorise 3 Pings/s)
|
|
||||||
$IPT -A ICMP_STACK -p icmp --icmp-type echo-request -m limit --limit 3/s -i $INT -j ACCEPT
|
|
||||||
$IPT -A ICMP_STACK -p icmp --icmp-type echo-reply -m limit --limit 3/s -i $INT -j ACCEPT
|
|
||||||
$IPT -A ICMP_STACK -p icmp --icmp-type echo-request -i $INT -j DROP
|
|
||||||
$IPT -A ICMP_STACK -p icmp --icmp-type echo-reply -i $INT -j DROP
|
|
||||||
$IPT -A ICMP_STACK -j ACCEPT
|
|
||||||
|
|
||||||
# 3.Forward
|
# 3.Forward
|
||||||
|
|
||||||
|
@ -314,7 +307,6 @@ echo 0 > /proc/sys/net/ipv4/ip_forward
|
||||||
$IPT -F LOG_ACCEPT
|
$IPT -F LOG_ACCEPT
|
||||||
$IPT -F ONLYTRUSTED
|
$IPT -F ONLYTRUSTED
|
||||||
$IPT -F ONLYPRIVILEGIED
|
$IPT -F ONLYPRIVILEGIED
|
||||||
$IPT -F ICMP_STACK
|
|
||||||
$IPT -F NEEDRESTRICT
|
$IPT -F NEEDRESTRICT
|
||||||
$IPT -t nat -F
|
$IPT -t nat -F
|
||||||
$IPT -t mangle -F
|
$IPT -t mangle -F
|
||||||
|
@ -331,7 +323,6 @@ echo 0 > /proc/sys/net/ipv4/ip_forward
|
||||||
$IPT -X LOG_ACCEPT
|
$IPT -X LOG_ACCEPT
|
||||||
$IPT -X ONLYPRIVILEGIED
|
$IPT -X ONLYPRIVILEGIED
|
||||||
$IPT -X ONLYTRUSTED
|
$IPT -X ONLYTRUSTED
|
||||||
$IPT -X ICMP_STACK
|
|
||||||
$IPT -X NEEDRESTRICT
|
$IPT -X NEEDRESTRICT
|
||||||
|
|
||||||
echo "OK"
|
echo "OK"
|
||||||
|
|
Loading…
Reference in a new issue