--- ../fr/security/shb-firewalls.xml	2005-10-16 12:08:49.000000000 +0200
+++ shb-firewalls.xml	2006-11-07 13:51:32.000000000 +0100
@@ -1,14 +1,14 @@
 <?xml version='1.0' encoding="UTF-8"?>
 <!-- $Header: /var/www/www.gentoo.org/raw_cvs/gentoo/xml/htdocs/doc/fr/security/shb-firewalls.xml,v 1.2 2005/10/16 10:03:39 neysx Exp $ -->
 <!DOCTYPE sections SYSTEM "/dtd/book.dtd">
 
 <sections>
 
-<version>1.1</version>
-<date>2005-10-16</date>
+<version>1.2</version>
+<date>2006-10-31</date>
 
 <section>
 <title>Un pare-feu</title>
 <body>
 
 <p>
@@ -707,30 +707,30 @@
       --limit 5/minute -j LOG --log-level 5 --log-prefix "SYN/FIN:"
   $IPTABLES -A check-flags -p tcp --tcp-flags SYN,FIN SYN,FIN -j DROP
 
   # Applique et ajoute les chaînes invalides.
   einfo "Appliquer les chaînes a INPUT"
   $IPTABLES -A INPUT -m state --state INVALID -j DROP
-  $IPTABLES -A INPUT -j icmp_allowed
+  $IPTABLES -A INPUT -p icmp -j icmp_allowed
   $IPTABLES -A INPUT -j check-flags
   $IPTABLES -A INPUT -i lo -j ACCEPT
   $IPTABLES -A INPUT -j allow-ssh-traffic-in
   $IPTABLES -A INPUT -j allowed-connection
 
   einfo "Appliquer les chaînes au FORWARD"
   $IPTABLES -A FORWARD -m state --state INVALID -j DROP
-  $IPTABLES -A FORWARD -j icmp_allowed
+  $IPTABLES -A FORWARD -p icmp -j icmp_allowed
   $IPTABLES -A FORWARD -j check-flags
   $IPTABLES -A FORWARD -o lo -j ACCEPT
   $IPTABLES -A FORWARD -j allow-ssh-traffic-in
   $IPTABLES -A FORWARD -j allow-www-traffic-out
   $IPTABLES -A FORWARD -j allowed-connection
 
   einfo "Appliquer les chaînes à l'OUTPUT"
   $IPTABLES -A OUTPUT -m state --state INVALID -j DROP
-  $IPTABLES -A OUTPUT -j icmp_allowed
+  $IPTABLES -A OUTPUT -p icmp -j icmp_allowed
   $IPTABLES -A OUTPUT -j check-flags
   $IPTABLES -A OUTPUT -o lo -j ACCEPT
   $IPTABLES -A OUTPUT -j allow-ssh-traffic-out
   $IPTABLES -A OUTPUT -j allow-dns-traffic-out
   $IPTABLES -A OUTPUT -j allow-www-traffic-out
   $IPTABLES -A OUTPUT -j allowed-connection