forked from zentralwerk/network
firewall/priv-stateful: fix rules
This commit is contained in:
parent
7b46fa12f1
commit
483ae6fc9a
|
@ -12,8 +12,9 @@ if echo "$IFACE" | grep priv >/dev/null; then
|
|||
# loopback
|
||||
iptables -A FORWARD -i lo -j ACCEPT
|
||||
ip6tables -A FORWARD -i lo -j ACCEPT
|
||||
# DHCP
|
||||
iptables -A FORWARD -i $IFACE -p udp --dport 67 -j ACCEPT
|
||||
# Trust priv
|
||||
iptables -A FORWARD -i $IFACE -j ACCEPT
|
||||
ip6tables -A FORWARD -i $IFACE -j ACCEPT
|
||||
# Deny by default
|
||||
iptables -A FORWARD -j REJECT
|
||||
ip6tables -A FORWARD -j REJECT
|
||||
|
|
Loading…
Reference in New Issue
Block a user