add iptabl rules

Author: evgeniy-scherbina

jail/linux.go

@@ -214,6 +214,19 @@ func (l *LinuxJail) setupIptables() error {
 		return fmt.Errorf("failed to add comprehensive TCP redirect rule: %v", err)
 	}
 
+	// TODO: clean up this rules
+	cmd = exec.Command("iptables", "-A", "FORWARD", "-s", "192.168.100.0/24", "-j", "ACCEPT")
+	err = cmd.Run()
+	if err != nil {
+		return err
+	}
+
+	cmd = exec.Command("iptables", "-A", "FORWARD", "-d", "192.168.100.0/24", "-j", "ACCEPT")
+	err = cmd.Run()
+	if err != nil {
+		return err
+	}
+
 	l.logger.Debug("Comprehensive TCP boundarying enabled", "interface", l.vethHost, "proxy_port", l.httpProxyPort)
 	return nil
 }