add firewall protection for wan_device in addition to wan_ifname (fixes #852)
SVN-Revision: 5136
This commit is contained in:
parent
5ef8d0eae7
commit
afd6539a65
1 changed files with 2 additions and 0 deletions
|
@ -8,6 +8,7 @@ start() {
|
||||||
scan_interfaces
|
scan_interfaces
|
||||||
|
|
||||||
config_get WAN wan ifname
|
config_get WAN wan ifname
|
||||||
|
config_get WANDEV wan device
|
||||||
config_get LAN lan ifname
|
config_get LAN lan ifname
|
||||||
|
|
||||||
## CLEAR TABLES
|
## CLEAR TABLES
|
||||||
|
@ -25,6 +26,7 @@ start() {
|
||||||
|
|
||||||
iptables -N LAN_ACCEPT
|
iptables -N LAN_ACCEPT
|
||||||
[ -z "$WAN" ] || iptables -A LAN_ACCEPT -i "$WAN" -j RETURN
|
[ -z "$WAN" ] || iptables -A LAN_ACCEPT -i "$WAN" -j RETURN
|
||||||
|
[ -z "$WANDEV" -o "$WANDEV" = "$WAN" ] || iptables -A LAN_ACCEPT -i "$WANDEV" -j RETURN
|
||||||
iptables -A LAN_ACCEPT -j ACCEPT
|
iptables -A LAN_ACCEPT -j ACCEPT
|
||||||
|
|
||||||
### INPUT
|
### INPUT
|
||||||
|
|
Loading…
Reference in a new issue