...
| Bloc de code |
|---|
allow to 0/0 to udp/53 # DNS request
allow to 0/0 to udp/123 # Network Time Protocol
allow to 157.159.0.0/16 to tcp/22 # SSH vers le réseau de l'établissement
\#
\# Récupération de package
allow to 0/0 to tcp/21 # FTP
allow from 0/0 from tcp/20 # FTP-data
allow to 0/0 to tcp/80 # HTTP YUM
allow to 0/0 to tcp/11371 # PGP-keys
\#
\# Portail
allow to 157.159.10.29/32 to tcp/443 # CAS request to cas.it-sudparis.eu
allow to 157.159.10.76/32 to tcp/3306 # mysql request to mysql1
allow to 157.159.0.0/16 to tcp/389 # LDAP
allow to 157.159.0.0/16 to tcp/25 # SMTP
allow to 0/0 to tcp/8443 # shibboleth
allow to 0/0 to tcp/443 # shibboleth
allow to 0/0 to tcp/445 # CIFS stockage
allow to 0/0 to tcp/137 # CIFS stockage
allow to 0/0 to tcp/138 # CIFS stockage
allow to 0/0 to tcp/139 # CIFS stockage
allow to 157.159.10.88/32 to tcp/143 # Accès au serveur de boites aux lettres pour Canal IMAP
\ |
#
...
Connexions
...
entrantes:
| Bloc de code |
|---|
allow from 0/0 to tcp/80 # HTTP allow from 157.159.0.0/16 to tcp/8080 # HTTP tomcat allow from 0/0 to tcp/443 # HTTPS allow from 0/0 to tcp/8443 # HTTPS tomcat allow from 0/0 to tcp/22 # Local SSH allow from 0/0 to udp/161 # SNMP |
...