projects
/
oweals
/
openwrt.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
5ef8d0e
)
add firewall protection for wan_device in addition to wan_ifname (fixes #852)
author
Felix Fietkau
<nbd@openwrt.org>
Sun, 15 Oct 2006 23:04:23 +0000
(23:04 +0000)
committer
Felix Fietkau
<nbd@openwrt.org>
Sun, 15 Oct 2006 23:04:23 +0000
(23:04 +0000)
SVN-Revision: 5136
package/iptables/files/firewall.init
patch
|
blob
|
history
diff --git
a/package/iptables/files/firewall.init
b/package/iptables/files/firewall.init
index 1e39d05fd93d841a6f4c9b1012ec9cb433b28963..4e8317d662c3f1117404c640e77cb9f8bd9b1b8e 100755
(executable)
--- a/
package/iptables/files/firewall.init
+++ b/
package/iptables/files/firewall.init
@@
-8,6
+8,7
@@
start() {
scan_interfaces
config_get WAN wan ifname
+ config_get WANDEV wan device
config_get LAN lan ifname
## CLEAR TABLES
@@
-25,6
+26,7
@@
start() {
iptables -N LAN_ACCEPT
[ -z "$WAN" ] || iptables -A LAN_ACCEPT -i "$WAN" -j RETURN
+ [ -z "$WANDEV" -o "$WANDEV" = "$WAN" ] || iptables -A LAN_ACCEPT -i "$WANDEV" -j RETURN
iptables -A LAN_ACCEPT -j ACCEPT
### INPUT