projects
/
openwrt
/
.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (parent:
20216aa
)
make uci firewall backwards compatible to the old firewall.user
author
John Crispin
<john@openwrt.org>
Wed, 27 Aug 2008 19:16:54 +0000
(19:16 +0000)
committer
John Crispin
<john@openwrt.org>
Wed, 27 Aug 2008 19:16:54 +0000
(19:16 +0000)
SVN-Revision: 12408
package/firewall/files/uci_firewall.sh
patch
|
blob
|
history
diff --git
a/package/firewall/files/uci_firewall.sh
b/package/firewall/files/uci_firewall.sh
index b7bdcd6e731c6faec5e7b1d83278420ea1b169cc..0ce878b7f7f11f306e5ec899019a5bd7b055895c 100755
(executable)
--- a/
package/firewall/files/uci_firewall.sh
+++ b/
package/firewall/files/uci_firewall.sh
@@
-303,14
+303,21
@@
fw_addif() {
fw_custom_chains() {
$IPTABLES -N input_rule
$IPTABLES -N output_rule
fw_custom_chains() {
$IPTABLES -N input_rule
$IPTABLES -N output_rule
- $IPTABLES -N forward_rule
+ $IPTABLES -N forward
ing
_rule
$IPTABLES -N prerouting_rule -t nat
$IPTABLES -N postrouting_rule -t nat
$IPTABLES -N prerouting_rule -t nat
$IPTABLES -N postrouting_rule -t nat
+ $IPTABLES -N input_wan
+ $IPTABLES -N forwarding_wan
+ $IPTABLES -N prerouting_wan -t nat
+
$IPTABLES -A INPUT -j input_rule
$IPTABLES -A OUTPUT -j output_rule
$IPTABLES -A INPUT -j input_rule
$IPTABLES -A OUTPUT -j output_rule
- $IPTABLES -A FORWARD -j forward_rule
+ $IPTABLES -A FORWARD -j forward
ing
_rule
$IPTABLES -A PREROUTING -t nat -j prerouting_rule
$IPTABLES -A POSTROUTING -t nat -j postrouting_rule
$IPTABLES -A PREROUTING -t nat -j prerouting_rule
$IPTABLES -A POSTROUTING -t nat -j postrouting_rule
+ $IPTABLES -A zone_wan -j input_wan
+ $IPTABLES -A zone_wan_forward -j forwarding_wan
+ $IPTABLES -A zone_wan_prerouting -t nat -j prerouting_wan
}
fw_init() {
}
fw_init() {