From 9fa840a95668f58abaab7ad78a9b38ca3d9a9171 Mon Sep 17 00:00:00 2001 From: toby Date: Wed, 13 Mar 2019 01:32:01 +0000 Subject: [PATCH] fixing typo in firewall rules --- files/firewall | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/files/firewall b/files/firewall index 93d0e8d..21eb184 100755 --- a/files/firewall +++ b/files/firewall @@ -141,11 +141,11 @@ case $1 in ## some rules for bastion boxes to protect the mgmt networks ip6tables -F FORWARD - ip6tables -A FORWARD -o mgmtgw1 -m state --state ESTABLISHED,RELATED -j ACCEPT -j ACCEPT -m comment --comment "only for bastion hosts" - ip6tables -A FORWARD -o mgmtgw1 -j DROP -j ACCEPT -m comment --comment "only for bastion hosts" - ip6tables -A FORWARD -o ipmigw1 -j DROP -j ACCEPT -m comment --comment "only for bastion hosts" - ip6tables -A FORWARD -i ipmigw1 -m state --state ESTABLISHED,RELATED -j ACCEPT -j ACCEPT -m comment --comment "only for bastion hosts" - ip6tables -A FORWARD -i ipmigw1 -j DROP -j ACCEPT -m comment --comment "only for bastion hosts" + ip6tables -A FORWARD -o mgmtgw1 -m state --state ESTABLISHED,RELATED -j ACCEPT -m comment --comment "only for bastion hosts" + ip6tables -A FORWARD -o mgmtgw1 -j DROP -m comment --comment "only for bastion hosts" + ip6tables -A FORWARD -o ipmigw1 -j DROP -m comment --comment "only for bastion hosts" + ip6tables -A FORWARD -i ipmigw1 -m state --state ESTABLISHED,RELATED -j ACCEPT -m comment --comment "only for bastion hosts" + ip6tables -A FORWARD -i ipmigw1 -j DROP -m comment --comment "only for bastion hosts" #special tables