From bd7babbf478d1061eb2c3bb73abed99b0afc1056 Mon Sep 17 00:00:00 2001 From: Willy MANGA Date: Thu, 9 May 2013 12:07:11 +0100 Subject: [PATCH] iptables:correction --- scripts/parefeu/firewall.bangui | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/scripts/parefeu/firewall.bangui b/scripts/parefeu/firewall.bangui index 1126fc0..502184c 100644 --- a/scripts/parefeu/firewall.bangui +++ b/scripts/parefeu/firewall.bangui @@ -15,10 +15,10 @@ IPM="$IPT -t mangle" # Des constantes NET_FAI=77.70.183.120/29 NET_DMZ=192.168.10.0/24 -NET_RPV_BANGUI=10.39.0/20 -NET_RPV_AUF=10.0.0/8 +NET_RPV_BANGUI=10.39.0.0/20 +NET_RPV_AUF=10.0.0.0/8 NET_MONTREAL=199.84.140.0/24 -NET_USAGER=192.168.10.0/24 +NET_USAGER=192.168.0.0/24 IP_WEB=192.168.10.4 IP_DNS=192.168.10.2 @@ -30,6 +30,7 @@ NAT_RPV=77.70.183.124 NAT_DMZ_DNS=77.70.183.125 NAT_DMZ_MAIL=77.70.183.125 NAT_DMZ_WEB=77.70.183.125 +NAT_DMZ_MONTREAL=10.39.0.254 IF_INTERNET="eth0" IF_DMZ="eth2" @@ -210,3 +211,6 @@ $IPN -A POSTROUTING -s $NET_USAGER -o $IF_INTERNET -j SNAT \ --to-source $NAT_USAGER $IPN -A POSTROUTING -s $NET_RPV_BANGUI -o $IF_INTERNET -j SNAT \ --to-source $NAT_RPV + +$IPN -A POSTROUTING -s $NET_DMZ -o $IF_IPSEC -j SNAT \ + --to-source $NAT_DMZ_MONTREAL -- 1.7.10.4