ip6t-firewall-server,ipt-firewall-server: move 'Loopback device generally allowed' to an earlier point in the script.

2024-04-08 21:07:51 +02:00 · 2024-04-08 21:07:51 +02:00 · 1062208237
commit 1062208237
parent d857756be7
2 changed files with 118 additions and 123 deletions
--- a/34
+++ b/34
@ -753,6 +753,22 @@ done
 echo_done


+# -------------
+# --- Traffic generally allowed
+# -------------
+
+echo
+echononl "\tLoopback device generally allowed.."
+
+# ---
+# - Loopback device
+# ---
+
+$ip6t -A INPUT -i lo -j ACCEPT
+$ip6t -A OUTPUT -o lo -j ACCEPT
+
+echo_done
+

 # ---
 # - Protection against syn-flooding
@ -979,24 +995,6 @@ echo_done
 echo


-# ------------- 
-# --- Traffic generally allowed 
-# ------------- 
- 
-echononl "\tLoopback device generally allowed.." 
- 
-# --- 
-# - Loopback device 
-# --- 
- 
-$ip6t -A INPUT -i lo -j ACCEPT 
-$ip6t -A OUTPUT -o lo -j ACCEPT 
- 
-echo_done
-
-
-echo
-
 # -------------
 # ---- Restrict local Servive to given (extern) IP-Address/Network
 # -------------
--- a/35
+++ b/35
@ -906,6 +906,22 @@ done
 echo_done


+# -------------
+# --- Traffic generally allowed
+# -------------
+
+echo
+echononl "\tLoopback device generally allowed.."
+
+# ---
+# - Loopback device
+# ---
+
+$ipt -A INPUT -i lo -j ACCEPT
+$ipt -A OUTPUT -o lo -j ACCEPT
+
+echo_done
+

 # ---
 # - Protection against syn-flooding
@ -1131,25 +1147,6 @@ done
 echo_done
 echo

- 
-# ------------- 
-# --- Traffic generally allowed 
-# ------------- 
- 
-echononl "\tLoopback device generally allowed.." 
- 
-# --- 
-# - Loopback device 
-# --- 
- 
-$ipt -A INPUT -i lo -j ACCEPT 
-$ipt -A OUTPUT -o lo -j ACCEPT 
- 
-echo_done
-
-
-echo
-
 # -------------
 # ---- Restrict local Servive to given (extern) IP-Address/Network
 # -------------