KumiSystems/openwrtv4
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

adds 5 new chains to the uci firewall that can be used to hook custom rules

Browse source 
SVN-Revision: 12395
This commit is contained in:
John Crispin 2008-08-27 12:03:48 +00:00
parent 6b04ad55f9
commit 517dfd27e5
1 changed files with 16 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
package/firewall/files/uci_firewall.sh
View file

@ -261,6 +261,19 @@ fw_addif() {
(ACTION="ifup" INTERFACE="$1" . /etc/hotplug.d/iface/20-firewall) (ACTION="ifup" INTERFACE="$1" . /etc/hotplug.d/iface/20-firewall)
} }
fw_custom_chains() {
$IPTABLES -N input_rule
$IPTABLES -N output_rule
$IPTABLES -N forward_rule
$IPTABLES -N prerouting_rule -t nat
$IPTABLES -N postrouting_rule -t nat
$IPTABLES -A INPUT -j input_rule
$IPTABLES -A OUTPUT -j output_rule
$IPTABLES -A FORWARD -j forward_rule
$IPTABLES -A PREROUTING -t nat -j prerouting_rule
$IPTABLES -A POSTROUTING -t nat -j postrouting_rule
}
fw_init() { fw_init() {
echo "Loading defaults" echo "Loading defaults"
config_foreach fw_defaults defaults config_foreach fw_defaults defaults
@ -274,6 +287,8 @@ fw_init() {
config_foreach fw_redirect redirect config_foreach fw_redirect redirect
echo "Loading includes" echo "Loading includes"
config_foreach fw_include include config_foreach fw_include include
echo "Adding custom chains"
fw_custom_chains
uci_set_state firewall core "" firewall_state uci_set_state firewall core "" firewall_state
uci_set_state firewall core loaded 1 uci_set_state firewall core loaded 1