ExternalVendorCode/gns3-server
1
0
Fork 0
mirror of https://github.com/GNS3/gns3-server.git synced 2025-01-07 05:18:44 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Use iptables to block IOU home call

Browse Source
This commit is contained in:
grossmj 2024-12-28 17:50:59 +07:00
parent a1090a3da8
commit ad7813d04b
No known key found for this signature in database
GPG Key ID: 1E7DD6DBB53FF3D7
1 changed files with 4 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
scripts/remote-install.sh
View File

@ -208,16 +208,10 @@ then
# Block potential IOU phone home call (xml.cisco.com is not in use at this time)
log "Blocking IOU phone home call"
if [ "$UBUNTU_CODENAME" == "focal" ]
then
iptables -I OUTPUT -p udp --dport 53 -m string --hex-string "|03|xml|05|cisco|03|com" --algo bm -j DROP
echo iptables-persistent iptables-persistent/autosave_v4 boolean true | debconf-set-selections
echo iptables-persistent iptables-persistent/autosave_v6 boolean true | debconf-set-selections
apt install -y iptables-persistent
else
echo "127.0.0.254 xml.cisco.com" | tee --append /etc/hosts
fi
iptables -I OUTPUT -p udp --dport 53 -m string --hex-string "|03|xml|05|cisco|03|com" --algo bm -j DROP
echo iptables-persistent iptables-persistent/autosave_v4 boolean true | debconf-set-selections
echo iptables-persistent iptables-persistent/autosave_v6 boolean true | debconf-set-selections
apt install -y iptables-persistent
fi
log "Adding gns3 to the kvm group"