iptables -A FORWARD -i ppp0 -o eth1 -m state --state ESTABLISHED,RELATED -j ACCEPT
# Forward from inside to outside
+iptables -A FORWARD -i eth1 -o ppp0 -p tcp --destination-port 80 -j DROP
+iptables -A FORWARD -i eth1 -o ppp0 -p tcp --destination-port 443 -j DROP
iptables -A FORWARD -i eth1 -o ppp0 -j ACCEPT
### NAT
# redirection sonde chauffage
iptables -t nat -A PREROUTING -i ppp0 -p udp -m udp --dport 8500 -j DNAT --to-destination 10.20.{{ num }}.3:8500
-# redirection proxy transparent
-iptables -t nat -A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j DNAT --to-destination {{ ansible_eth1.ipv4.address }}:3128
+iptables -t nat -A PREROUTING -i ppp0 -p udp -m udp --dport 47809 -j DNAT --to-destination 10.20.{{ num }}.5:47809
# masquerade
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE