delete the default iptable rule

2025-10-26 08:42:29 +01:00 · 2011-08-03 13:39:13 -07:00 · 2011-08-03 13:39:13 -07:00 · 66fe12910c
commit 66fe12910c
parent e3d30c6be6
1 changed files with 2 additions and 0 deletions
--- a/python/lib/cloudutils/serviceConfig.py
+++ b/python/lib/cloudutils/serviceConfig.py
@ -533,6 +533,8 @@ class firewallConfigAgent(firewallConfigBase):
        self.ports = "22 16509 5900:6100 49152:49216".split()
        if syscfg.env.distribution.getVersion() == "CentOS":
            self.rules = ["-D FORWARD -j RH-Firewall-1-INPUT"]
+        else:
+            self.rules = ["-D FORWARD -j REJECT --reject-with icmp-host-prohibited"]


 class cloudAgentConfig(serviceCfgBase):