탐색 도움말
로그인
ffdo-infrastruktur
/
ffdo-ansible
의 미러 https://github.com/ffdo/ffdo-ansible.git
5
0
포크 0
파일
트리: 55d97e124c
브랜치 태그
ffdo-ansible
/
roles
/
gateway-iptables
/
templates
/
rules.v6.j2

rules.v6.j2 437 B
히스토리 Raw

1234567891011121314151617 
  1. # Generated by Ansible
    2. 

  2. *mangle
    3. 

  3. :PREROUTING ACCEPT [0:0]
    4. 

  4. :INPUT ACCEPT [0:0]
    5. 

  5. :FORWARD ACCEPT [0:0]
    6. 

  6. :OUTPUT ACCEPT [0:0]
    7. 

  7. :POSTROUTING ACCEPT [0:0]
    8. 

  8. # MSS clamping
    9. 

  9. {% if peers is defined %}{%for peer in peers %}
    10. 

  10. -A POSTROUTING -o {{ peer.name }} -p tcp -m tcp --tcp-flags SYN,RST SYN -m tcpmss ! --mss 0:1220 -j TCPMSS --set-mss 1220
    11. 

  11. {%endfor%}{% endif %}
    12. 

  12. COMMIT
    13. 

  13. *filter
    14. 

  14. :INPUT ACCEPT [0:0]
    15. 

  15. :FORWARD ACCEPT [0:0]
    16. 

  16. :OUTPUT ACCEPT [0:0]
    17. 

  17. COMMIT
    18.