From 9444e0ae1218b2abd232593a25731cf87028f98c Mon Sep 17 00:00:00 2001
From: Christoph <ckubu@oopen.de>
Date: Wed, 13 Mar 2019 16:04:59 +0100
Subject: [PATCH] Allow GIT port (9418) out.

---
 ip6t-firewall-server | 16 ++++++++++++++++
 ipt-firewall-server  | 16 ++++++++++++++++
 2 files changed, 32 insertions(+)

diff --git a/ip6t-firewall-server b/ip6t-firewall-server
index d538809..5c5f25a 100755
--- a/ip6t-firewall-server
+++ b/ip6t-firewall-server
@@ -1695,6 +1695,22 @@ for _dev in ${ext_if_arr[@]} ; do
    fi
 done
 
+echo_done
+
+
+# ---
+# - GIT out only
+# ---
+
+echononl "\t\tGIT out only"
+
+for _dev in ${ext_if_arr[@]} ; do
+   $ip6t -A OUTPUT -o $_dev -p tcp --dport 9418  -m state --state NEW -j ACCEPT
+   if $kernel_forward_between_interfaces ; then
+      $ip6t -A FORWARD -o $_dev -p tcp --dport 9418  -m state --state NEW -j ACCEPT   
+   fi
+done
+
 echo_done
 echo
 
diff --git a/ipt-firewall-server b/ipt-firewall-server
index 8dff0bd..f22bda2 100755
--- a/ipt-firewall-server
+++ b/ipt-firewall-server
@@ -1939,6 +1939,22 @@ for _dev in ${ext_if_arr[@]} ; do
    fi
 done
 
+echo_done
+
+
+# ---
+# - GIT out only
+# ---
+
+echononl "\t\tGIT out only"
+
+for _dev in ${ext_if_arr[@]} ; do
+   $ipt -A OUTPUT -o $_dev -p tcp --dport 9418 -m state --state NEW -j ACCEPT
+   if $kernel_activate_forwarding ; then
+      $ipt -A FORWARD -o $_dev -p tcp --dport 9418 -m state --state NEW -j ACCEPT   
+   fi
+done
+
 echo_done
 echo