Modify gaming rules.

ipt-firewall-gateway

@@ -2941,6 +2941,17 @@ if $allow_http_request_out && ! $permit_local_net_to_inet ; then
       if $kernel_activate_forwarding && ! $permit_local_net_to_inet ; then
          $ipt -A FORWARD -o $_dev -p tcp -m multiport --dports $standard_http_ports -m conntrack --ctstate NEW -j ACCEPT
       fi
+
+
+      # - Note:
+      # - If (local) alias interfaces like eth1:0 in use, youe need a further
+      # - special rule.
+      # -
+      if $kernel_activate_forwarding && $local_alias_interfaces ; then
+         $ipt -A FORWARD -p tcp -o $_dev -m multiport --dports $http_ports --tcp-flag ACK ACK -j ACCEPT
+         $ipt -A FORWARD -p tcp -i $_dev -m multiport --sports $http_ports --tcp-flag ACK ACK -j ACCEPT
+      fi
+
    done
    echo_done
 else
@@ -5499,6 +5510,45 @@ fi
 # ---
 
 echo ""
+echononl "\t\tGaming UDP local Ports out"
+if $allow_gaming_out ; then
+
+   for _dev in ${ext_if_arr[@]} ; do
+      for _port in ${game_ports_local_udp_arr[@]} ; do
+         $ipt -A FORWARD -o $_dev -p udp --sport $_port  -m conntrack --ctstate NEW -j ACCEPT
+      done
+   done
+
+   echo_done
+else
+   echo_skipped
+
+fi
+
+echononl "\t\tGaming TCP local Ports out"
+if $allow_gaming_out ; then
+
+   for _dev in ${ext_if_arr[@]} ; do
+      for _port in ${game_ports_local_tcp_arr[@]} ; do
+         $ipt -A FORWARD -o $_dev -p tcp --sport $_port  -m conntrack --ctstate NEW -j ACCEPT
+      done
+
+
+      # - Rule is needed if (local) interface aliases in use (like eth0:1)
+      # -
+      if $kernel_activate_forwarding && $local_alias_interfaces ; then
+         $ipt -A FORWARD -p tcp -o $_dev --sport $_port --tcp-flag ACK ACK -j ACCEPT
+         $ipt -A FORWARD -p tcp -i $_dev --dport $_port --tcp-flag ACK ACK -j ACCEPT
+      fi
+
+   done
+
+   echo_done
+else
+   echo_skipped
+
+fi
+
 echononl "\t\tGaming UDP Ports out"
 
 if $allow_gaming_out && ! $permit_local_net_to_inet ; then