Added missing table for SSH, fixed allowable SSH address to be proper RFC1918

Class C (cherry picked from commit e7fb96776d0e18670fdfb61025295e27b1dc772b)
author: Brent Bloxam <brent.bloxam@gmail.com> 2012-03-20 13:04:58 -0400
committer: Sol Jerome <sol.jerome@gmail.com> 2012-03-20 13:47:47 -0500
commit: ee47266a811e77e4b688f8834fc6c72b4a70c5d6 (patch)
tree: 2fc5b96e31d7a792a436990cf4800510423ec37c /doc
parent: 45cd60e18e5cb22619272ae8a0d6e2af692d1cf7 (diff)
download: bcfg2-ee47266a811e77e4b688f8834fc6c72b4a70c5d6.tar.gz
bcfg2-ee47266a811e77e4b688f8834fc6c72b4a70c5d6.tar.bz2
bcfg2-ee47266a811e77e4b688f8834fc6c72b4a70c5d6.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/doc/server/plugins/generators/tgenshi/iptables.txt b/doc/server/plugins/generators/tgenshi/iptables.txt
index 2655e7b2d..3e49470d7 100644
--- a/doc/server/plugins/generators/tgenshi/iptables.txt
+++ b/doc/server/plugins/generators/tgenshi/iptables.txt
@@ -64,6 +64,7 @@ iptables
     :FORWARD DROP [0:0]
     :OUTPUT ACCEPT [0:0]
     :NO-SMTP - [0:0]
+    :SSH - [0:0]
 
     #Default rules
     #discard malicious packets
@@ -84,7 +85,7 @@ iptables
 
     # Allow SSH Access
     -A INPUT  -p tcp -m state --state NEW -m tcp --tcp-flags FIN,SYN,RST,ACK SYN --dport 22 -j SSH
-    -A SSH -s 192.0.0.0/255.0.0.0  -j ACCEPT
+    -A SSH -s 192.168.0.0/255.255.0.0  -j ACCEPT
 
     # Allow Ganglia Access
     -A INPUT -m state --state NEW -m tcp -p tcp --tcp-flags FIN,SYN,RST,ACK SYN --src 192.168.1.1 --dport 8649 -j ACCEPT
author	Brent Bloxam <brent.bloxam@gmail.com>	2012-03-20 13:04:58 -0400
committer	Sol Jerome <sol.jerome@gmail.com>	2012-03-20 13:47:47 -0500
commit	ee47266a811e77e4b688f8834fc6c72b4a70c5d6 (patch)
tree	2fc5b96e31d7a792a436990cf4800510423ec37c /doc
parent	45cd60e18e5cb22619272ae8a0d6e2af692d1cf7 (diff)
download	bcfg2-ee47266a811e77e4b688f8834fc6c72b4a70c5d6.tar.gz bcfg2-ee47266a811e77e4b688f8834fc6c72b4a70c5d6.tar.bz2 bcfg2-ee47266a811e77e4b688f8834fc6c72b4a70c5d6.zip