From 6765ae902019fc5e6a944bb7e37c1f7fa23e6acd Mon Sep 17 00:00:00 2001
From: Christoph <ckubu@oopen.de>
Date: Mon, 19 Mar 2018 01:17:11 +0100
Subject: [PATCH] Change rule for masquerading, but i don't know, if the new
 one is correct.

---
 conf/main_ipv4.conf.sample | 4 ++++
 ipt-firewall-gateway       | 5 ++++-
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/conf/main_ipv4.conf.sample b/conf/main_ipv4.conf.sample
index ac70028..ea990d3 100644
--- a/conf/main_ipv4.conf.sample
+++ b/conf/main_ipv4.conf.sample
@@ -1041,6 +1041,8 @@ masquerade_tcp_cons=""
 # -    portforward_tcp="$ext_if_dsl_1:9997:192.168.52.25:22
 # -                     $ext_if_dsl_1:9998:192.168.53.24:22"
 # -
+# - Blank separated list
+# -
 portforward_tcp=""
 
 
@@ -1054,6 +1056,8 @@ portforward_tcp=""
 # -    portforward_udp="$ext_if_dsl_1:1094:192.168.52.25:1094
 # -                     $ext_if_dsl_1:9999:192.168.53.24:1095"
 # -
+# - Blank separated list
+# -
 portforward_udp=""
 
 
diff --git a/ipt-firewall-gateway b/ipt-firewall-gateway
index 5be1a57..ec77d9f 100755
--- a/ipt-firewall-gateway
+++ b/ipt-firewall-gateway
@@ -258,7 +258,10 @@ if [[ ${#nat_network_arr[@]} -gt 0 ]] && $kernel_activate_forwarding ; then
          continue
       fi
 
-      $ipt -t nat -A POSTROUTING -o ${_val_arr[1]} -d ${_val_arr[0]} -j MASQUERADE
+      # - ?? - Don't know which rule is the right one
+      # -
+      #$ipt -t nat -A POSTROUTING -o ${_val_arr[1]} -d ${_val_arr[0]} -j MASQUERADE
+      $ipt -t nat -A POSTROUTING -o ${_val_arr[1]} -s ${_val_arr[0]} -j MASQUERADE
    done
 fi