[D-community-commits] r280 - trunk/fai-config-dir/files/etc/shorewall/rules
holger at alioth.debian.org
holger at alioth.debian.org
Mon Mar 17 15:03:33 UTC 2008
Author: holger
Date: 2008-03-17 15:03:31 +0000 (Mon, 17 Mar 2008)
New Revision: 280
Modified:
trunk/fai-config-dir/files/etc/shorewall/rules/FIREWALL
Log:
actually we do want pings..
Modified: trunk/fai-config-dir/files/etc/shorewall/rules/FIREWALL
===================================================================
--- trunk/fai-config-dir/files/etc/shorewall/rules/FIREWALL 2008-03-17 12:19:12 UTC (rev 279)
+++ trunk/fai-config-dir/files/etc/shorewall/rules/FIREWALL 2008-03-17 15:03:31 UTC (rev 280)
@@ -438,12 +438,11 @@
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/
# PORT PORT(S) DEST LIMIT GROUP
-# Reject Ping from the "bad" net zone.. and prevent your log from being flooded..
+## Reject Ping from the "bad" net zone.. and prevent your log from being flooded..
+#Ping/REJECT net $FW
-Ping/REJECT net $FW
-
-# Permit all ICMP traffic FROM the firewall TO the net zone
-
+# Permit all ICMP traffic FROM+TO the firewall FROM+TO the net zone
+ACCEPT net $FW icmp
ACCEPT $FW net icmp
#
More information about the D-community-commits
mailing list