tcatm · June 21, 2015 13:54
diff --git a/gistfile1.txt b/gistfile1.txt
 diff --git a/roles/base/files/etc/iptables/iptables.rules b/roles/base/files/etc/iptables/iptables.rules
 index defea6f..05c75f3 100644
 --- a/roles/base/files/etc/iptables/iptables.rules
 +++ b/roles/base/files/etc/iptables/iptables.rules
 @@ -1,3 +1,8 @@
 +*filter
 +-A OUTPUT -o internet -p icmp -m icmp --icmp-type 3/1 -j DROP
 +-A OUTPUT -o eth0 -p icmp -m icmp --icmp-type 3/1 -j DROP
 +-A OUTPUT -o eth2 -p icmp -m icmp --icmp-type 3/1 -j DROP
 +COMMIT
 *nat
 -A POSTROUTING -o ffexit -j MASQUERADE
 -A POSTROUTING -o hideio -j MASQUERADE
	diff --git a/roles/base/files/etc/iptables/iptables.rules b/roles/base/files/etc/iptables/iptables.rules
	index defea6f..05c75f3 100644
	--- a/roles/base/files/etc/iptables/iptables.rules
	+++ b/roles/base/files/etc/iptables/iptables.rules
	@@ -1,3 +1,8 @@
	+*filter
	+-A OUTPUT -o internet -p icmp -m icmp --icmp-type 3/1 -j DROP
	+-A OUTPUT -o eth0 -p icmp -m icmp --icmp-type 3/1 -j DROP
	+-A OUTPUT -o eth2 -p icmp -m icmp --icmp-type 3/1 -j DROP
	+COMMIT
	*nat
	-A POSTROUTING -o ffexit -j MASQUERADE
	-A POSTROUTING -o hideio -j MASQUERADE