dumalogiya
/
openwrt
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

firewall: add sanity checks to zone default rules (patch from #5459)

Browse Source 
SVN-Revision: 17713
v19.07.3_mercusys_ac12_duma
Felix Fietkau 15 years ago
parent 615a4d1e45
commit e9ec3a6e68
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File

6
package/firewall/files/uci_firewall.sh
Unescape Escape View File

@ -56,9 +56,9 @@ create_zone() {
$IPTABLES -N zone_$1_DROP
$IPTABLES -N zone_$1_REJECT
$IPTABLES -N zone_$1_forward
$IPTABLES -A zone_$1_forward -j zone_$1_$5
$IPTABLES -A zone_$1 -j zone_$1_$3
$IPTABLES -A output -j zone_$1_$4
[ "$5" ] && $IPTABLES -A zone_$1_forward -j zone_$1_$5
[ "$3" ] && $IPTABLES -A zone_$1 -j zone_$1_$3
[ "$4" ] && $IPTABLES -A output -j zone_$1_$4
$IPTABLES -N zone_$1_nat -t nat
$IPTABLES -N zone_$1_prerouting -t nat
$IPTABLES -t raw -N zone_$1_notrack

Write Preview
Loading…
Cancel
Save