From 6ca4577c2cc8cace8d22f7723887d6d6419e657c Mon Sep 17 00:00:00 2001
From: Ycarus <ycarus@zugaina.org>
Date: Thu, 31 May 2018 15:44:40 +0200
Subject: [PATCH] Allow ICMP from VPN to OMR

---
 openmptcprouter/Makefile                              |  2 +-
 .../files/etc/uci-defaults/1980-omr-firewall          | 11 +++++++++++
 2 files changed, 12 insertions(+), 1 deletion(-)

diff --git a/openmptcprouter/Makefile b/openmptcprouter/Makefile
index dc390c815..d2d44aa60 100644
--- a/openmptcprouter/Makefile
+++ b/openmptcprouter/Makefile
@@ -8,7 +8,7 @@
 include $(TOPDIR)/rules.mk
 
 PKG_NAME:=openmptcprouter
-PKG_VERSION:=0.80
+PKG_VERSION:=0.90
 PKG_RELEASE:=1
 
 include $(INCLUDE_DIR)/package.mk
diff --git a/openmptcprouter/files/etc/uci-defaults/1980-omr-firewall b/openmptcprouter/files/etc/uci-defaults/1980-omr-firewall
index 9bcf6ef30..d36272bf9 100755
--- a/openmptcprouter/files/etc/uci-defaults/1980-omr-firewall
+++ b/openmptcprouter/files/etc/uci-defaults/1980-omr-firewall
@@ -13,6 +13,17 @@ if [ "$(uci -q show firewall | grep Allow-All-Ping)" = "" ]; then
 		commit firewall
 	EOF
 fi
+if [ "$(uci -q show firewall | grep Allow-VPN-ICMP)" = "" ]; then
+	uci -q batch <<-EOF >/dev/null
+		add firewall rule
+		set firewall.@rule[-1].enabled='1'
+		set firewall.@rule[-1].target='ACCEPT'
+		set firewall.@rule[-1].name='Allow-VPN-ICMP'
+		set firewall.@rule[-1].proto='icmp'
+		set firewall.@rule[-1].src='vpn'
+		commit firewall
+	EOF
+fi
 if [ "$(uci -q show firewall | grep Allow-Lan-to-Wan)" = "" ]; then
 	uci -q batch <<-EOF >/dev/null
 		add firewall rule