mirror of
https://github.com/GNS3/gns3-server
synced 2024-12-27 17:28:08 +00:00
Merge pull request #2366 from GNS3/bugfix/block-iou-call
Block IOU phone home call using IPtable
This commit is contained in:
commit
19142d97bb
@ -197,8 +197,18 @@ then
|
|||||||
# Force hostid for IOU
|
# Force hostid for IOU
|
||||||
dd if=/dev/zero bs=4 count=1 of=/etc/hostid
|
dd if=/dev/zero bs=4 count=1 of=/etc/hostid
|
||||||
|
|
||||||
# Block iou call. The server is down
|
# Block potential IOU phone home call (xml.cisco.com is not in use at this time)
|
||||||
echo "127.0.0.254 xml.cisco.com" | tee --append /etc/hosts
|
log "Block IOU phone home call"
|
||||||
|
if [ "$UBUNTU_CODENAME" == "focal" ]
|
||||||
|
then
|
||||||
|
iptables -I OUTPUT -p udp --dport 53 -m string --hex-string "|03|xml|05|cisco|03|com" --algo bm -j DROP
|
||||||
|
echo iptables-persistent iptables-persistent/autosave_v4 boolean true | debconf-set-selections
|
||||||
|
echo iptables-persistent iptables-persistent/autosave_v6 boolean true | debconf-set-selections
|
||||||
|
apt-get install -y iptables-persistent
|
||||||
|
else
|
||||||
|
echo "127.0.0.254 xml.cisco.com" | tee --append /etc/hosts
|
||||||
|
fi
|
||||||
|
|
||||||
fi
|
fi
|
||||||
|
|
||||||
log "Add gns3 to the kvm group"
|
log "Add gns3 to the kvm group"
|
||||||
|
Loading…
Reference in New Issue
Block a user