summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorPatrick Uiterwijk <puiterwijk@redhat.com>2016-12-14 19:01:23 +0000
committerPatrick Uiterwijk <puiterwijk@redhat.com>2016-12-14 19:01:23 +0000
commit0ee67fcdecac39cb0a6aa4586ec5883b5e2ec1b5 (patch)
tree53296a5b9dc330a7c4570b4b7725abf13173aae9
parent01292bba605e9ddd7d999c500e010692dc9798fa (diff)
downloadansible-0ee67fcdecac39cb0a6aa4586ec5883b5e2ec1b5.tar.gz
ansible-0ee67fcdecac39cb0a6aa4586ec5883b5e2ec1b5.tar.xz
ansible-0ee67fcdecac39cb0a6aa4586ec5883b5e2ec1b5.zip
Let's be even more obnoxious
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
Diffstat
-rw-r--r--files/osbs/fix-docker-iptables.production2
-rw-r--r--files/osbs/fix-docker-iptables.staging2
2 files changed, 4 insertions, 0 deletions
diff --git a/files/osbs/fix-docker-iptables.production b/files/osbs/fix-docker-iptables.production
index a30f41427..7d5fc56bd 100644
--- a/files/osbs/fix-docker-iptables.production
+++ b/files/osbs/fix-docker-iptables.production
@@ -17,6 +17,8 @@ fi
if [ "`iptables -nL | grep 'FILTER_FORWARD all'`" == "" ];
then
iptables -I FORWARD 1 -j FILTER_FORWARD
+ iptables -I FORWARD 2 -j REJECT
+ iptables -I DOCKER-ISOLATION 1 -j FILTER_FORWARD
fi
# Delete all old rules
diff --git a/files/osbs/fix-docker-iptables.staging b/files/osbs/fix-docker-iptables.staging
index 7b4b6aee2..75675631e 100644
--- a/files/osbs/fix-docker-iptables.staging
+++ b/files/osbs/fix-docker-iptables.staging
@@ -17,6 +17,8 @@ fi
if [ "`iptables -nL | grep 'FILTER_FORWARD all'`" == "" ];
then
iptables -I FORWARD 1 -j FILTER_FORWARD
+ iptables -I FORWARD 2 -j REJECT
+ iptables -I DOCKER-ISOLATION 1 -j FILTER_FORWARD
fi
# Delete all old rules
generated by cgit (git 2.34.1) at 2025-09-22 16:04:03 +0000