Commit 6b5a863901ae10c7146022961e2ce8d474632aa0

Authored by Paulo Tada
1 parent 7b6f8c9f
Exists in master and in 1 other branch mezuro_spb

Fixing iptables rules from reverseproxy cookbook

cookbooks/firewall/templates/host-reverseproxy/iptables-nat.erb
1 1  
2 2 # Forward reverseproxy:22 to integration:22 (required to enable git pushes over SSH)
3 3  
4   --A PREROUTING -d <%= node['peers']['reverseproxy'] %>/32 -p tcp -m tcp --dport 22 -j DNAT --to-destination <%= node['peers']['integration'] %>:22
  4 +-A PREROUTING -d <%= node['config']['external_ip'] %>/32 -p tcp -m tcp --dport 22 -j DNAT --to-destination <%= node['peers']['integration'] %>:22
5 5  
6 6 -A POSTROUTING -d <%= node['peers']['integration'] %>/32 -p tcp -m tcp --dport 22 -j SNAT --to-source <%= node['peers']['reverseproxy'] %>
... ...