Firewall: Add a rule for HP printers on port 9100

This commit is contained in:
gardouille 2015-10-10 01:42:21 +02:00
parent 3d05c73870
commit f115b3cc9c
1 changed files with 8 additions and 3 deletions

View File

@ -200,9 +200,12 @@ fw_start() {
$IPT -A OUTPUT -j ACCEPT -p tcp -o "${ILAN}" --dport 22 -m state --state NEW -m comment --comment "SSH out"
fi
#### Mail (rapport d'erreur, ...)
#### Mail SMTP
## Port 465 (SMTPS SSL) is deprecated)
$IPT -A OUTPUT -j ACCEPT -p tcp -o "${ILAN}" --dport 25 -m state --state NEW -m comment --comment "SMTP out"
$IPT -A OUTPUT -j ACCEPT -p tcp -o "${ILAN}" --dport 587 -m state --state NEW -m comment --comment "SMTPS out"
$IPT -A OUTPUT -j ACCEPT -p tcp -o "${ILAN}" --dport 587 -m state --state NEW -m comment --comment "SMTP TLS out"
#### Mail IMPA
$IPT -A OUTPUT -j ACCEPT -p tcp -o "${ILAN}" --dport 143 -m state --state NEW -m comment --comment "IMAP out"
$IPT -A OUTPUT -j ACCEPT -p tcp -o "${ILAN}" --dport 993 -m state --state NEW -m comment --comment "IMAPS out"
@ -264,6 +267,8 @@ fw_start() {
if [ $(command -v cupsd) ]; then
#### Printers
$IPT -A OUTPUT -j ACCEPT -p udp -o "${ILAN}" -s "${IPLAN}" --dport 161 -m state --state NEW -m comment --comment "SNMP OUT"
#### HP Printers
$IPT -A OUTPUT -j ACCEPT -p tcp -o "${ILAN}" -s "${IPLAN}" --dport 9100 -m state --state NEW -m comment --comment "HP printer OUT"
fi
}
@ -302,7 +307,7 @@ fw_log() {
# Arrêt du firewall
fw_stop() {
# Supprimer une route ajouter automatiquement
ip route del 169.254.0.0/16
#ip route del 169.254.0.0/16
# Vider les tables actuelles
$IPT -t filter -F
# Vider les règles personnelles