Removing forward rules on router for SSH traffic entirely after Sentinel bootstrap...

[iot2.git] / iotjava / iotruntime / master / RouterConfig.java

diff --git a/iotjava/iotruntime/master/RouterConfig.java b/iotjava/iotruntime/master/RouterConfig.java
index e6e04137303769512ba6b01cd74cc2bb80a84417..48bb8f691fd000026ab6a696e6d4b24ef4835da4 100644 (file)
--- a/iotjava/iotruntime/master/RouterConfig.java
+++ b/iotjava/iotruntime/master/RouterConfig.java
@@ -648,8 +648,8 @@ public final class RouterConfig {
                        strConfigHost + " -d " + strMonitorHost + " -p tcp --dport ssh");
                pwConfig.println("-A OUTPUT -j ACCEPT -s " + 
                        strConfigHost + " -d " + strMonitorHost + " -p tcp --sport ssh");
-               pwConfig.println("-A FORWARD -j ACCEPT -p tcp --dport ssh");
-               pwConfig.println("-A FORWARD -j ACCEPT -p tcp --sport ssh");
+               //pwConfig.println("-A FORWARD -j ACCEPT -p tcp --dport ssh");
+               //pwConfig.println("-A FORWARD -j ACCEPT -p tcp --sport ssh");
 
        }