projects
/
invirt/packages/invirt-web.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
fix iptables syntax so vnc works again
[invirt/packages/invirt-web.git]
/
files
/
etc
/
invirt-iptables
/
rules.d
/
50-invirt-web.mako
diff --git
a/files/etc/invirt-iptables/rules.d/50-invirt-web.mako
b/files/etc/invirt-iptables/rules.d/50-invirt-web.mako
index
ad5c923
..
7082c13
100644
(file)
--- a/
files/etc/invirt-iptables/rules.d/50-invirt-web.mako
+++ b/
files/etc/invirt-iptables/rules.d/50-invirt-web.mako
@@
-10,7
+10,7
@@
server_port = host_port
:POSTROUTING ACCEPT [8:674]
:OUTPUT ACCEPT [8:674]
% for h in cfg.hosts:
:POSTROUTING ACCEPT [8:674]
:OUTPUT ACCEPT [8:674]
% for h in cfg.hosts:
--A PREROUTING -s ! ${h.ip} -i eth0 -p tcp -m tcp --dport ${server_port} -j DNAT --to-destination ${h.ip}:${host_port}
+-A PREROUTING ! -s ${h.ip} -i eth0 -p tcp -m tcp --dport ${server_port} -j DNAT --to-destination ${h.ip}:${host_port}
-A POSTROUTING -d ${h.ip} -o eth0 -p tcp -m tcp --dport ${host_port} -j SNAT --to-source ${cfg.vnc.proxy_ip}
<% server_port += 1 %>\
% endfor
-A POSTROUTING -d ${h.ip} -o eth0 -p tcp -m tcp --dport ${host_port} -j SNAT --to-source ${cfg.vnc.proxy_ip}
<% server_port += 1 %>\
% endfor
projects / invirt/packages/invirt-web.git / blobdiff