mptcp/openmptcprouter-feeds
1
0
Fork 0
mirror of https://github.com/Ysurac/openmptcprouter-feeds.git synced 2025-02-14 19:41:51 +00:00
Code Issues Releases Wiki Activity

Use firewall zone name

Browse source
This commit is contained in:
Ycarus 2018-06-07 16:53:32 +02:00
parent bda4d2d5a8
commit 2ad5399923
2 changed files with 21 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
openmptcprouter/files/etc/uci-defaults/1980-omr-firewall
View file

@ -1,5 +1,25 @@
#!/bin/sh
if [ "$(uci -q get firewall.@zone[2].name)" = "vpn" ]; then
uci -q batch <<-EOF >/dev/null
del firewall.@zone[2]
commit firewall
EOF
fi
if [ "$(uci -q get firewall.zone_vpn)" = "" ]; then
uci -q batch <<-EOF >/dev/null
set firewall.zone_vpn=zone
set firewall.zone_vpn.name=vpn
set firewall.zone_vpn.network=glorytun
set firewall.zone_vpn.masq=1
set firewall.zone_vpn.input=REJECT
set firewall.zone_vpn.forward=ACCEPT
set firewall.zone_vpn.output=ACCEPT
commit firewall
EOF
fi
if [ "$(uci -q show firewall | grep Allow-All-Ping)" = "" ]; then
uci -q batch <<-EOF >/dev/null
add firewall rule

2
openmptcprouter/files/etc/uci-defaults/2020-omr-vpn Normal file → Executable file
View file

@ -17,7 +17,7 @@ fi
if [ "$(uci -q show firewall | grep omrvpn)" = "" ]; then
uci -q batch <<-EOF >/dev/null
add_list firewall.@zone[2].network=omrvpn
add_list firewall.zone_vpn.network=omrvpn
delete firewall.allow_dhcp_request_vpn
set firewall.allow_dhcp_request_vpn=rule
set firewall.allow_dhcp_request_vpn.name=Allow-DHCP-Request-VPN