@@ -412,9 +412,9 @@ def fw_router(self):
412412 self .fw .append (
413413 ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 53 -s %s -j ACCEPT" % (self .dev , guestNetworkCidr )])
414414 self .fw .append (
415- ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 80 -m state --state NEW -j ACCEPT" % self .dev ])
415+ ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 80 -s %s - m state --state NEW -j ACCEPT" % ( self .dev , guestNetworkCidr ) ])
416416 self .fw .append (
417- ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 8080 -m state --state NEW -j ACCEPT" % self .dev ])
417+ ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 8080 -s %s - m state --state NEW -j ACCEPT" % ( self .dev , guestNetworkCidr ) ])
418418 self .fw .append (
419419 ["filter" , "" , "-A FORWARD -i %s -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT" % self .dev ])
420420 self .fw .append (
@@ -464,9 +464,9 @@ def fw_vpcrouter(self):
464464 ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 53 -s %s -j ACCEPT" % (self .dev , guestNetworkCidr )])
465465
466466 self .fw .append (
467- ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 80 -m state --state NEW -j ACCEPT" % self .dev ])
467+ ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 80 -s %s - m state --state NEW -j ACCEPT" % ( self .dev , guestNetworkCidr ) ])
468468 self .fw .append (
469- ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 8080 -m state --state NEW -j ACCEPT" % self .dev ])
469+ ["filter" , "" , "-A INPUT -i %s -p tcp -m tcp --dport 8080 -s %s - m state --state NEW -j ACCEPT" % ( self .dev , guestNetworkCidr ) ])
470470 self .fw .append (["mangle" , "" ,
471471 "-A PREROUTING -m state --state NEW -i %s -s %s ! -d %s/32 -j ACL_OUTBOUND_%s" %
472472 (self .dev , guestNetworkCidr , self .address ['gateway' ], self .dev )])
0 commit comments