Project

General

Profile

Anomalie #2306

autoriser le ping

Added by Thierry Bertrand almost 10 years ago. Updated over 9 years ago.

Status:
Fermé
Priority:
Haut
Assigned To:
-
Category:
-
Start date:
10/27/2011
Due date:
% Done:

100%

Distribution:
EOLE 2.3

Description

Bonjour,

serait-il possible d'ajouter le ping comme autorisation depuis/vers la machine hôte voire les conteneurs svp ?

Ce serait deux lignes de ce genre :
allow_dest(interface='eth0', ip="%%adresse_ip_eth0", protocol='icmp', type='0')
allow_src(interface='eth0', ip="%%adresse_ip_eth0", protocol='icmp', type='8')

(non testé)

Merci d'avance
Cordialement


Related issues

Related to conf-scribe - Evolution #2731: Autoriser le ping sur les serveurs de fichiers Fermé 01/17/2012

Associated revisions

Revision d0cb758a (diff)
Added by christophe guerinot almost 10 years ago

La nouvelle feature fixes #2306

History

#1 Updated by Thierry Bertrand almost 10 years ago

  • Project changed from eSML to eSBL

#2 Updated by Thierry Bertrand almost 10 years ago

  • Project changed from eSBL to conf-esbl

#3 Updated by christophe guerinot almost 10 years ago

  • Status changed from Nouveau to Résolu
  • % Done changed from 0 to 100

#4 Updated by christophe guerinot almost 10 years ago

syntaxe correcte
allow_dest(interface='eth0', ip="0/0", protocol='icmp', typ='echo-request')

#5 Updated by Sebastien Foy almost 10 years ago

  • Status changed from Résolu to En attente d'informations
  • Priority changed from Normal to Haut
  • Target version set to Mises à jour 2.3 - 03 RC

Quelle commande autoriserait tout les protocoles ?
Autrement dire au parefeu de tout laisser passer?

allow_dest(interface='eth0', ip="0/0", protocol='*', typ='*')
allow_src(interface='eth0', ip="0/0", protocol='*', typ='*')

D'avance merci pour la réponse.

-> Solution dans /usr/sbin/ouvrir.firewall

#6 Updated by Fabrice Barconnière almost 10 years ago

  • Target version deleted (Mises à jour 2.3 - 03 RC)

#7 Updated by Joël Cuissinat over 9 years ago

  • Target version set to Mises à jour 2.3 - 03 Stable

Nb : on a aussi des demandes dans ce sens...

#8 Updated by Joël Cuissinat over 9 years ago

  • Status changed from En attente d'informations to Fermé

conf-esbl (2.3-eole2) eole-2.3-updates

jojo:~/git/conf-esbl(master)$ cat ./fichier/fichier-membre/tmpl/00_fichier_membre.fw
# autoriser les ping
allow_dest(interface='eth0', ip="0/0", protocol='icmp', typ='echo-request')

jojo:~/git/conf-esbl(master)$     

Also available in: Atom PDF