mirror of
git://projects.qi-hardware.com/openwrt-xburst.git
synced 2024-11-24 03:11:32 +02:00
fixes firewall for trunk, custom chains were never reched, as policies apply beforehand
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@12978 3c298f89-4303-0410-b956-a3cf2f4a3e73
This commit is contained in:
parent
4d51ed9837
commit
e9ded9eef5
@ -158,6 +158,9 @@ fw_defaults() {
|
||||
config_get syn_burst $1 syn_burst
|
||||
[ "$syn_flood" == "1" ] && load_synflood $syn_rate $syn_burst
|
||||
|
||||
echo "Adding custom chains"
|
||||
fw_custom_chains
|
||||
|
||||
$IPTABLES -N input
|
||||
$IPTABLES -N output
|
||||
$IPTABLES -N forward
|
||||
@ -170,9 +173,6 @@ fw_defaults() {
|
||||
$IPTABLES -A reject -p tcp -j REJECT --reject-with tcp-reset
|
||||
$IPTABLES -A reject -j REJECT --reject-with icmp-port-unreachable
|
||||
|
||||
echo "Adding custom chains"
|
||||
fw_custom_chains
|
||||
|
||||
fw_set_chain_policy INPUT "$DEF_INPUT"
|
||||
fw_set_chain_policy OUTPUT "$DEF_OUTPUT"
|
||||
fw_set_chain_policy FORWARD "$DEF_FORWARD"
|
||||
|
Loading…
Reference in New Issue
Block a user