Skip to content

Commit 4d26d8c

Browse files
weizhouapacheDaanHoogland
weizhouapache
authored and
DaanHoogland
committed
VR: allow outgoing traffic from Remote access VPN clients
1 parent 79ebf69 commit 4d26d8c

File tree

1 file changed

+2
-0
lines changed

1 file changed

+2
-0
lines changed

systemvm/debian/opt/cloud/bin/configure.py

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1287,10 +1287,12 @@ def remoteaccessvpn_iptables(self, publicip, obj):
12871287
self.fw.append(["", "", "-A VPN_FORWARD -s %s -j RETURN" % localcidr])
12881288
self.fw.append(["", "", "-A VPN_FORWARD -i ppp+ -d %s -j RETURN" % localcidr])
12891289
self.fw.append(["", "", "-A VPN_FORWARD -i ppp+ -o ppp+ -j RETURN"])
1290+
self.fw.append(["", "", "-A VPN_FORWARD -j ACCEPT"])
12901291
else:
12911292
self.fw.append(["", "", "-A FORWARD -i ppp+ -o ppp+ -j ACCEPT"])
12921293
self.fw.append(["", "", "-A FORWARD -s %s -o ppp+ -j ACCEPT" % localcidr])
12931294
self.fw.append(["", "", "-A FORWARD -i ppp+ -d %s -j ACCEPT" % localcidr])
1295+
self.fw.append(["", "", "-A FORWARD -i ppp+ -j ACCEPT"])
12941296

12951297
self.fw.append(["", "", "-A INPUT -i ppp+ -m udp -p udp --dport 53 -j ACCEPT"])
12961298
self.fw.append(["", "", "-A INPUT -i ppp+ -m tcp -p tcp --dport 53 -j ACCEPT"])

0 commit comments

Comments
 (0)