forked from zentralwerk/network
upstream iptables
This commit is contained in:
parent
4d97712d6e
commit
f813bc781b
|
@ -17,3 +17,13 @@ iptables:
|
|||
- mode: 744
|
||||
- require:
|
||||
- pkg: iptables
|
||||
|
||||
/etc/network/if-pre-up.d/iptables:
|
||||
file.managed:
|
||||
- source: salt://upstream/iptables
|
||||
- template: 'jinja'
|
||||
- context:
|
||||
upstream_iface: {{ dhcp_iface }}
|
||||
- mode: 744
|
||||
- require:
|
||||
- pkg: iptables
|
||||
|
|
|
@ -0,0 +1,6 @@
|
|||
#!/bin/sh
|
||||
|
||||
if [ "$IFACE" = "{{ upstream_iface }}" ]; then
|
||||
iptables -A INPUT -i "$IFACE" -j DROP
|
||||
iptables -P INPUT ACCEPT
|
||||
fi
|
Loading…
Reference in New Issue