diff options
| author | Jo-Philipp Wich <jow@openwrt.org> | 2011-06-30 01:31:23 +0000 |
|---|---|---|
| committer | Jo-Philipp Wich <jow@openwrt.org> | 2011-06-30 01:31:23 +0000 |
| commit | 68a1c8e1e3ccd2a366563b32db85361f5fff6cec (patch) | |
| tree | 13b2cf395e5f6c2700134079cded31e3bf016fe7 /package/firewall/files/reflection.hotplug | |
| parent | 8976fa262252403f80f325b28c70092d8f6f6f19 (diff) | |
| download | upstream-68a1c8e1e3ccd2a366563b32db85361f5fff6cec.tar.gz upstream-68a1c8e1e3ccd2a366563b32db85361f5fff6cec.tar.bz2 upstream-68a1c8e1e3ccd2a366563b32db85361f5fff6cec.zip | |
firewall: - allow multiple ports, protocols, macs, icmp types per rule - implement "limit" and "limit_burst" options for rules - implement "extra" option to rules and redirects for passing arbritary flags to iptables - implement negations for "src_port", "dest_port", "src_dport", "src_mac", "proto" and "icmp_type" options - allow wildcard (*) "src" and "dest" options in rules to allow specifying "any" source or destination - validate symbolic icmp-type names against the selected iptables binary - properly handle forwarded ICMPv6 traffic in the default configuration
SVN-Revision: 27317
Diffstat (limited to 'package/firewall/files/reflection.hotplug')
| -rw-r--r-- | package/firewall/files/reflection.hotplug | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/package/firewall/files/reflection.hotplug b/package/firewall/files/reflection.hotplug index 33d121cec4..4fd8f296de 100644 --- a/package/firewall/files/reflection.hotplug +++ b/package/firewall/files/reflection.hotplug @@ -56,6 +56,7 @@ if [ "$ACTION" = "add" ] && [ "$INTERFACE" = "wan" ]; then [ "$src" = wan ] && [ "$target" = DNAT ] && { local dest config_get dest "$cfg" dest "lan" + [ "$dest" != "*" ] || return local net for net in $(find_networks "$dest"); do |