mirror of
https://github.com/Ysurac/openmptcprouter-feeds.git
synced 2025-03-09 15:40:03 +00:00
162 lines
4 KiB
Lua
162 lines
4 KiB
Lua
-- Copyright 2011 Jo-Philipp Wich <jow@openwrt.org>
|
|
-- Licensed to the public under the Apache License 2.0.
|
|
|
|
local sys = require "luci.sys"
|
|
local dsp = require "luci.dispatcher"
|
|
local ft = require "luci.tools.firewall"
|
|
|
|
local m, s, o
|
|
|
|
arg[1] = arg[1] or ""
|
|
|
|
m = Map("firewall",
|
|
translate("Firewall - Port Forwards"),
|
|
translate("This page allows you to change advanced properties of the port \
|
|
forwarding entry. In most cases there is no need to modify \
|
|
those settings."))
|
|
|
|
m.redirect = dsp.build_url("admin/network/firewall/forwards")
|
|
|
|
if m.uci:get("firewall", arg[1]) ~= "redirect" then
|
|
luci.http.redirect(m.redirect)
|
|
return
|
|
else
|
|
local name = m:get(arg[1], "name") or m:get(arg[1], "_name")
|
|
if not name or #name == 0 then
|
|
name = translate("(Unnamed Entry)")
|
|
end
|
|
m.title = "%s - %s" %{ translate("Firewall - Port Forwards"), name }
|
|
end
|
|
|
|
s = m:section(NamedSection, arg[1], "redirect", "")
|
|
s.anonymous = true
|
|
s.addremove = false
|
|
|
|
ft.opt_enabled(s, Button)
|
|
ft.opt_name(s, Value, translate("Name"))
|
|
|
|
|
|
o = s:option(Value, "proto", translate("Protocol"))
|
|
o:value("tcp udp", "TCP+UDP")
|
|
o:value("tcp", "TCP")
|
|
o:value("udp", "UDP")
|
|
o:value("icmp", "ICMP")
|
|
|
|
function o.cfgvalue(...)
|
|
local v = Value.cfgvalue(...)
|
|
if not v or v == "tcpudp" then
|
|
return "tcp udp"
|
|
end
|
|
return v
|
|
end
|
|
|
|
|
|
o = s:option(Value, "src", translate("Source zone"))
|
|
o.nocreate = true
|
|
o.default = "wan"
|
|
o.template = "cbi/firewall_zonelist"
|
|
o.rmempty = false
|
|
|
|
|
|
o = s:option(DynamicList, "src_mac",
|
|
translate("Source MAC address"),
|
|
translate("Only match incoming traffic from these MACs."))
|
|
o.rmempty = true
|
|
o.datatype = "neg(macaddr)"
|
|
o.placeholder = translate("any")
|
|
|
|
luci.sys.net.mac_hints(function(mac, name)
|
|
o:value(mac, "%s (%s)" %{ mac, name })
|
|
end)
|
|
|
|
|
|
o = s:option(Value, "src_ip",
|
|
translate("Source IP address"),
|
|
translate("Only match incoming traffic from this IP or range."))
|
|
o.rmempty = true
|
|
o.datatype = "neg(ipmask4)"
|
|
o.placeholder = translate("any")
|
|
|
|
luci.sys.net.ipv4_hints(function(ip, name)
|
|
o:value(ip, "%s (%s)" %{ ip, name })
|
|
end)
|
|
|
|
|
|
o = s:option(Value, "src_port",
|
|
translate("Source port"),
|
|
translate("Only match incoming traffic originating from the given source port or port range on the client host"))
|
|
o.rmempty = true
|
|
o.datatype = "neg(portrange)"
|
|
o.placeholder = translate("any")
|
|
|
|
o:depends("proto", "tcp")
|
|
o:depends("proto", "udp")
|
|
o:depends("proto", "tcp udp")
|
|
o:depends("proto", "tcpudp")
|
|
|
|
o = s:option(Value, "src_dip",
|
|
translate("External IP address"),
|
|
translate("Only match incoming traffic directed at the given IP address."))
|
|
|
|
luci.sys.net.ipv4_hints(function(ip, name)
|
|
o:value(ip, "%s (%s)" %{ ip, name })
|
|
end)
|
|
|
|
|
|
o.rmempty = true
|
|
o.datatype = "neg(ipmask4)"
|
|
o.placeholder = translate("any")
|
|
|
|
|
|
o = s:option(Value, "src_dport", translate("External port"),
|
|
translate("Match incoming traffic directed at the given " ..
|
|
"destination port or port range on this host"))
|
|
o.datatype = "neg(portrange)"
|
|
|
|
o:depends("proto", "tcp")
|
|
o:depends("proto", "udp")
|
|
o:depends("proto", "tcp udp")
|
|
o:depends("proto", "tcpudp")
|
|
|
|
o = s:option(Value, "dest", translate("Internal zone"))
|
|
o.nocreate = true
|
|
o.default = "lan"
|
|
o.template = "cbi/firewall_zonelist"
|
|
|
|
|
|
o = s:option(Value, "dest_ip", translate("Internal IP address"),
|
|
translate("Redirect matched incoming traffic to the specified \
|
|
internal host"))
|
|
o.datatype = "ipmask4"
|
|
|
|
luci.sys.net.ipv4_hints(function(ip, name)
|
|
o:value(ip, "%s (%s)" %{ ip, name })
|
|
end)
|
|
|
|
|
|
o = s:option(Value, "dest_port",
|
|
translate("Internal port"),
|
|
translate("Redirect matched incoming traffic to the given port on \
|
|
the internal host"))
|
|
o.placeholder = translate("any")
|
|
o.datatype = "portrange"
|
|
|
|
o:depends("proto", "tcp")
|
|
o:depends("proto", "udp")
|
|
o:depends("proto", "tcp udp")
|
|
o:depends("proto", "tcpudp")
|
|
|
|
o = s:option(Flag, "reflection", translate("Enable NAT Loopback"))
|
|
o.rmempty = true
|
|
o.default = o.enabled
|
|
o.cfgvalue = function(...)
|
|
return Flag.cfgvalue(...) or "1"
|
|
end
|
|
|
|
|
|
s:option(Value, "extra",
|
|
translate("Extra arguments"),
|
|
translate("Passes additional arguments to iptables. Use with care!"))
|
|
|
|
|
|
return m
|