On 08/24/2009 03:08 PM, Mike McGrath wrote:
> ---
> manifests/servergroups/proxy.pp | 3 ++-
> 1 files changed, 2 insertions(+), 1 deletions(-)
>
> diff --git a/manifests/servergroups/proxy.pp b/manifests/servergroups/proxy.pp
> index bdea7b6..70bbcf4 100644
> --- a/manifests/servergroups/proxy.pp
> +++ b/manifests/servergroups/proxy.pp
> @@ -741,7 +741,8 @@ class proxy {
> # Firewall Rules, allow HTTP traffic through
> $tcpPorts = [ 80, 443, 873, 8080 ]
> $udpPorts = []
> - $custom = []
> + $custom = ['-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT',
> + '-A INPUT -p tcp -m tcp --sport 80 -j DROP']
>
> iptables { "/etc/sysconfig/iptables":
> content => template("system/iptables-template.conf.erb"),+1 -Toshio
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Fedora-infrastructure-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
