dumalogiya
/
openwrt
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
OpenWRT firmware for routers
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
17,548 Commits
2 Branches
0 Tags
653 MiB
Diff 68.3%
C 21%
Makefile 4.7%
Shell 2.3%
Roff 1.6%
Other 2%
 
 
 
 
 
 
v19.07.3_mercusys_ac12_duma
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a9977eca91'
${ noResults }
Go to file
Jo-Philipp Wich a9977eca91 firewall: allow local redirection of ports 
Allow a redirect like:

config redirect
        option src 'wan'
        option dest 'lan'
        option src_dport '22001'
        option dest_port '22'
        option proto 'tcp'

note the absence of the "dest_ip" field, meaning to terminate the connection on the firewall itself.

This patch makes three changes:

(1) moves the conntrack module into the conntrack package (but not any of the conntrack_* helpers).
(2) fixes a bug where the wrong table is used when the "dest_ip" field is absent.
(3) accepts incoming connections on the destination port on the input_ZONE table, but only for DNATted
    connections.

In the above example,

ssh -p 22 root@myrouter

would fail from the outside, but:

ssh -p 22001 root@myrouter

would succeed.  This is handy if:

(1) you want to avoid ssh probes on your router, or
(2) you want to redirect incoming connections on port 22 to some machine inside your firewall, but
    still want to allow firewall access from outside.

Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>

SVN-Revision: 26617
 		13 years ago
docs kamikaze has been released long ago 14 years ago
include firewall: allow local redirection of ports 13 years ago
package firewall: allow local redirection of ports 13 years ago
scripts add a new package metadata variable MDEPENDS for specifying local menuconfig dependencies that do not propagate to other packages 13 years ago
target solos: various upstreamed solos patches 13 years ago
toolchain uClibc: forced unwind for pthread_cancel handling is broken and triggers spurious abort() calls from libgcc. disable it and use the other method instead 13 years ago
tools firmware-utils: fix endianness bugs in firmware generation program. 13 years ago
.gitignore gitignore: add *.rej and *.orig to .gitignore 13 years ago
BSDmakefile add missing copyright header 18 years ago
Config.in add a kernel config option for magic sysrq 13 years ago
LICENSE finally move buildroot-ng to trunk 8 years ago
Makefile add a command for printing a cleaned up make target database - will be used to analyze package dependencies at some point 14 years ago
README remove bison requirement (see [10398] & [14900]) 14 years ago
feeds.conf.default switch to LuCI trunk, should be stable enough for common use now 14 years ago
rules.mk rules.mk: properly populate $(LIBGCC_S) for external toolchains 13 years ago

README 

This is the buildsystem for the OpenWrt Linux distribution

Please use "make menuconfig" to configure your appreciated
configuration for the toolchain and firmware.

You need to have installed gcc, binutils, patch, bzip2, flex,
make, gettext, pkg-config, unzip, libz-dev and libc headers.

Simply running 'make' will build your firmware.
It will download all sources, build the cross-compile toolchain, 
the kernel and all choosen applications.

You can use scripts/flashing/flash.sh for remotely updating your embedded
system via tftp.

The OpenWrt system is documented in docs/. You will need a LaTeX distribution
and the tex4ht package to build the documentation. Type make -C docs/ to build it.

Building your own firmware you need to have access to a Linux, BSD or MacOSX system.
Cygwin will not be supported because of the lack of case sensitiveness.

Sunshine!
	Your OpenWrt Project
	http://openwrt.org