X-Git-Url: https://git.llucax.com/software/pymin.git/blobdiff_plain/296d853cc95fd5bef262248cfe21b507abd26a4f..5d2a72486a8ef72659df813e1c0feed41da3a667:/pymin/services/firewall/templates/iptables.sh diff --git a/pymin/services/firewall/templates/iptables.sh b/pymin/services/firewall/templates/iptables.sh index 57dacd5..e384d0e 100644 --- a/pymin/services/firewall/templates/iptables.sh +++ b/pymin/services/firewall/templates/iptables.sh @@ -4,7 +4,7 @@ # TODO escape shell commands more securely def s(text): - return repr(text.encode('utf-8')) + return repr(unicode(text).encode('utf-8')) def optional(switch, value): if value is not None: @@ -13,8 +13,14 @@ def optional(switch, value): %> +/usr/sbin/iptables -t filter -F + +/usr/sbin/iptables -t filter -P INPUT ACCEPT +/usr/sbin/iptables -t filter -P OUTPUT ACCEPT +/usr/sbin/iptables -t filter -P FORWARD ACCEPT + % for (index, rule) in enumerate(rules): -/sbin/iptables -t filter \ +/usr/sbin/iptables -t filter \ -I ${rule.chain|s} ${index+1|s} \ -j ${rule.target|s} \ ${optional('-s', rule.src)} \