Merge branch 'master' of ssh://git.evolix.org/git/evolinux/minifirewall
This commit is contained in:
commit
910c3f7063
|
@ -49,7 +49,7 @@ DNSSERVEURS='85.31.205.33 78.153.240.29'
|
||||||
# du minifirewall en crontab
|
# du minifirewall en crontab
|
||||||
# (Attention, si un proxy HTTP est installe en local
|
# (Attention, si un proxy HTTP est installe en local
|
||||||
# mettre 0.0.0.0/0)
|
# mettre 0.0.0.0/0)
|
||||||
HTTPSITES='security.debian.org pub.evolix.net volatile.debian.org'
|
HTTPSITES='security.debian.org pub.evolix.net volatile.debian.org mirror.evolix.org'
|
||||||
|
|
||||||
# HTTPS
|
# HTTPS
|
||||||
# /!\ Possibilite d'utiliser des noms de domaines
|
# /!\ Possibilite d'utiliser des noms de domaines
|
||||||
|
|
16
minifirewall
16
minifirewall
|
@ -91,7 +91,21 @@ $IPT -A LOG_ACCEPT -j LOG --log-prefix '[IPTABLES ACCEPT] : '
|
||||||
$IPT -A LOG_ACCEPT -j ACCEPT
|
$IPT -A LOG_ACCEPT -j ACCEPT
|
||||||
|
|
||||||
# Configuration
|
# Configuration
|
||||||
test -f /etc/firewall.rc && . /etc/firewall.rc
|
configfile="/etc/firewall.rc"
|
||||||
|
|
||||||
|
if ! test -f $configfile; then
|
||||||
|
echo "$configfile does not exist" >&2
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
tmpfile=`mktemp`
|
||||||
|
. $configfile 2>$tmpfile >&2
|
||||||
|
if [ -s $tmpfile ]; then
|
||||||
|
echo "$configfile returns standard or error output (see below). Stopping."
|
||||||
|
cat $tmpfile
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
rm $tmpfile
|
||||||
|
|
||||||
# trusted ip addresses
|
# trusted ip addresses
|
||||||
$IPT -N ONLYTRUSTED
|
$IPT -N ONLYTRUSTED
|
||||||
|
|
Loading…
Reference in a new issue