Download as
Browse Code »

Commit 13a720b570af625761520ae9e373d059d23622fe

Authored by Sergio Oliveira
1 parent f533dad5
Exists in master and in 66 other branches 3.x, add_you_are_here_breadcrumbs_label, api_for_colab, backup_not_prod, button_suspension_points_remove, cdtc_configuration, create_institution_bootstrap_modal, design_validation, dev-lappis, dev_env_minimal, disable_email_dev, docs, fix_edit_institution, fix_edit_software_with_another_license, fix_list_style_inside_article, fix_members_pagination, fix_models_translations, fix_no_license, fix_software_api, fix_software_block_migration, fix_validations_and_tests, focus_search_field_theme, gov-user-refactoring, gov-user-refactoring-rails4, header_fix, institution_modal_on_rating, kalibro-conf-refactoring, kalibro-processor-package, lxc, mailinglist_page_title, margin_fix, mezuro_cookbook, organization_rating_style_changes, performance, prezento, r3, refactor_software_communities, refactor_software_for_sisp, register_page, release-process, release-process-v2, remove-unused-images, remove_backup_emails, remove_secondary_email_from_user, removing_super_archives_email, review_message, scope2method, signals_user_noosfero, sisp_colab_config, sisp_dev, sisp_dev_master, sisp_simple_version, software_as_organization, software_catalog_style_fix, software_catalog_style_fixes, spb_minimal_env, spec_refactor, stable-4.x, stable-devel, support_docs, syslog, temp_soft_comm_refactoring, thread_dropdown, thread_page, update_software_api, update_softwares_boxes

Added missing chains on iptables commands

Showing 1 changed file with 3 additions and 2 deletions   Show diff stats
utils/reverseproxy_ssh_setup
  Diff comments   View file @13a720b
1 #!/bin/sh 1 #!/bin/sh
2 2
3 set -e 3 set -e
  4 +set -x
4 5
5 port="$1" 6 port="$1"
6 reverseproxy_ip="$2" 7 reverseproxy_ip="$2"
@@ -19,6 +20,6 @@ semanage port -a -t ssh_port_t -p tcp "$port" @@ -19,6 +20,6 @@ semanage port -a -t ssh_port_t -p tcp "$port"
19 systemctl restart sshd 20 systemctl restart sshd
20 21
21 # Setup port redirect 22 # Setup port redirect
22 -iptables -A PREROUTING -d $reverseproxy_ip/32 -p tcp -m tcp --dport 22 -j DNAT --to-destination $integration_ip:22  
23 -iptables -A POSTROUTING -d $integration_ip/32 -p tcp -m tcp --dport 22 -j SNAT --to-source $reverseproxy_ip 23 +iptables -t nat -A PREROUTING -d $reverseproxy_ip/32 -p tcp -m tcp --dport 22 -j DNAT --to-destination $integration_ip:22
  24 +iptables -t nat -A POSTROUTING -d $integration_ip/32 -p tcp -m tcp --dport 22 -j SNAT --to-source $reverseproxy_ip
24 sysctl -w net.ipv4.ip_forward=1 25 sysctl -w net.ipv4.ip_forward=1