Code Review
/
aaf
/
cadi.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
review
|
tree
raw
|
inline
| side by side
Exempt Cassandra traffic from fproxy
[aaf/cadi.git]
/
sidecar
/
tproxy-config
/
src
/
main
/
bin
/
start.sh
diff --git
a/sidecar/tproxy-config/src/main/bin/start.sh
b/sidecar/tproxy-config/src/main/bin/start.sh
index
c467d31
..
758a910
100644
(file)
--- a/
sidecar/tproxy-config/src/main/bin/start.sh
+++ b/
sidecar/tproxy-config/src/main/bin/start.sh
@@
-22,5
+22,9
@@
set -x
set -eo pipefail
set -x
set -eo pipefail
+iptables -t nat -A OUTPUT -p tcp -j ACCEPT -s 127.0.0.1 --dport 61647
+iptables -t nat -A OUTPUT -p tcp -j ACCEPT --dport 9042
+iptables -t nat -A OUTPUT -p tcp -j ACCEPT --dport 9160
+iptables -t nat -A OUTPUT -p tcp -j ACCEPT --dport 61621
iptables -t nat -A OUTPUT -p tcp -j REDIRECT --to-port 10680 -m owner '!' --uid-owner 1001
iptables -t nat --list
iptables -t nat -A OUTPUT -p tcp -j REDIRECT --to-port 10680 -m owner '!' --uid-owner 1001
iptables -t nat --list