firewall/ipt-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Support local service from given extern network

Browse Source
This commit is contained in:
Christoph
2019-09-04 01:11:31 +02:00
parent 051e7da995
commit e292be4141
5 changed files with 85 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
ip6t-firewall-server
View File

@ -938,7 +938,7 @@ echononl "\t\tAllow (non-standard) local Services"
if [[ ${#allow_local_service_arr[@]} -gt 0 ]] ; then
for _dev in "${ext_if_arr[@]}" ; do
for _val in "${allow_local_service_arr[@]}" ; do
IFS=':' read -a _val_arr <<< "${_val}"
IFS=',' read -a _val_arr <<< "${_val}"
$ip6t -A INPUT -i $_dev -p ${_val_arr[1]} --dport ${_val_arr[0]} -m state --state NEW -j ACCEPT
done
done
@ -947,6 +947,25 @@ else
echo_skipped
fi
# -------------
# ---- Allow local Services from given (extern) network
# -------------
echononl "\t\tAllow local Services from given (extern) network"
if [[ ${#allow_local_service_from_network_arr[@]} -gt 0 ]] ; then
for _dev in "${ext_if_arr[@]}" ; do
for _val in "${allow_local_service_from_network_arr[@]}" ; do
IFS=',' read -a _val_arr <<< "${_val}"
$ip6t -A INPUT -i $_dev -p ${_val_arr[2]} -s ${_val_arr[0]} --dport ${_val_arr[1]} -m state --state NEW -j ACCEPT
done
done
echo_done
else
echo_skipped
fi
echo