firewall/priv-stateful: fix rules
This commit is contained in:
parent
7b46fa12f1
commit
483ae6fc9a
|
@ -12,8 +12,9 @@ if echo "$IFACE" | grep priv >/dev/null; then
|
||||||
# loopback
|
# loopback
|
||||||
iptables -A FORWARD -i lo -j ACCEPT
|
iptables -A FORWARD -i lo -j ACCEPT
|
||||||
ip6tables -A FORWARD -i lo -j ACCEPT
|
ip6tables -A FORWARD -i lo -j ACCEPT
|
||||||
# DHCP
|
# Trust priv
|
||||||
iptables -A FORWARD -i $IFACE -p udp --dport 67 -j ACCEPT
|
iptables -A FORWARD -i $IFACE -j ACCEPT
|
||||||
|
ip6tables -A FORWARD -i $IFACE -j ACCEPT
|
||||||
# Deny by default
|
# Deny by default
|
||||||
iptables -A FORWARD -j REJECT
|
iptables -A FORWARD -j REJECT
|
||||||
ip6tables -A FORWARD -j REJECT
|
ip6tables -A FORWARD -j REJECT
|
||||||
|
|
Loading…
Reference in New Issue