Files @ da362b930a68
Branch filter:

Location: conntrackt/conntrackt/templates/conntrackt/entity_iptables.html

da362b930a68 644 B text/html Show Annotation Show as Raw Download as Raw
branko
Changed default policy for generated iptables rules for INPUT and FORWARD chain to DROP. Changed administration link to point to Conntrackt-specific admin page.
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
{% load conntrackt_tags %}
# iptables rules generated by conntrackt for {{entity}}
*filter
:INPUT DROP [0:0]
{% for interface in entity.interface_set.all %}
  {% for communication in interface.destination_set.all %}
    {% ifchanged communication.description %}

      {% if communication.description %}
# {{communication.description}}
      {% else  %}
# Communications without desecription.
      {% endif %}
    {% endifchanged %}
{% iptables communication %}
  {% endfor %}
{% endfor %}
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
COMMIT
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
This site is powered by Kallithea 0.7.0, which is © 2010–2023 by various authors & licensed under GPLv3.