forked from ISTI-ansible-roles/ansible-roles
13 lines
346 B
Django/Jinja
13 lines
346 B
Django/Jinja
*filter
|
|
:INPUT ACCEPT [0:0]
|
|
:FORWARD ACCEPT [0:0]
|
|
:OUTPUT ACCEPT [0:0]
|
|
{% if iptables_default_policy == 'REJECT' %}
|
|
-A INPUT -j REJECT --reject-with icmp6-addr-unreachable
|
|
-A FORWARD -j REJECT --reject-with icmp6-addr-unreachable
|
|
{% else %}
|
|
-A INPUT -j {{ iptables_default_policy }}
|
|
-A FORWARD -j {{ iptables_default_policy }}
|
|
{% endif %}
|
|
COMMIT
|