From b5db0b93ef10cce7b6ab04d03695d9c04ef3fb97 Mon Sep 17 00:00:00 2001
From: Louis Depres <louis.dprs@gmail.com>
Date: Fri, 18 Mar 2022 08:55:33 +0100
Subject: [PATCH] Second Commit

---
 Sio1/SISR1/30-FiltrageEtDMZ/fw5.sh | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/Sio1/SISR1/30-FiltrageEtDMZ/fw5.sh b/Sio1/SISR1/30-FiltrageEtDMZ/fw5.sh
index d41527a..aa0d4f4 100755
--- a/Sio1/SISR1/30-FiltrageEtDMZ/fw5.sh
+++ b/Sio1/SISR1/30-FiltrageEtDMZ/fw5.sh
@@ -36,10 +36,11 @@ sudo iptables -A INPUT -p udp --sport 80 -j ACCEPT
 
 # NAT sur la carte exterieur (pouvoir curl une machine de l'autre coter)
 sudo iptables -t nat -A POSTROUTING -o "${IFEXT}" -j MASQUERADE -s 10.0.0.0/16
+sudo iptables -t nat -A POSTROUTING -o "${IFEXT}" -j MASQUERADE -s 172.16.0.0/16
 #sudo iptables -L -t nat # pour controler
 sudo iptables -A FORWARD -j ACCEPT
 
 # Acces DNS sortante
-sudo iptables -A OUTPUT -p udp --dport 80 -j ACCEPT
-sudo iptables -A INPUT -p udp --sport 80 -j ACCEPT
+sudo iptables -A FORWARD -p udp --dport 53 -j ACCEPT
+sudo iptables -A FORWARD -p udp --sport 53 -j ACCEPT