webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-28 11:43:25 +02:00
Code Issues Packages Projects Releases Wiki Activity

firewall: Filter logging of broadcasts from the internal networks.

Browse Source
This commit is contained in:
Michael Tremer
2014-03-05 14:07:23 +01:00
parent 323923d912
commit 63f2fb7fda
1 changed files with 14 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
src/initscripts/init.d/firewall
View File

@@ -230,6 +230,20 @@ iptables_init() {
iptables -t nat -N REDNAT iptables -t nat -N REDNAT
iptables -t nat -A POSTROUTING -j REDNAT iptables -t nat -A POSTROUTING -j REDNAT
# Filter logging of incoming broadcasts.
iptables -N BROADCAST_FILTER
iptables -A INPUT -j BROADCAST_FILTER
iptables -A BROADCAST_FILTER -i "${GREEN_DEV}" -d "${GREEN_BROADCAST}" -j DROP
if [ -n "${BLUE_DEV}" -a -n "${BLUE_BROADCAST}" ]; then
iptables -A BROADCAST_FILTER -i "${BLUE_DEV}" -d "${BLUE_BROADCAST}" -j DROP
fi
if [ -n "${ORANGE_DEV}" -a -n "${ORANGE_BROADCAST}" ]; then
iptables -A BROADCAST_FILTER -i "${ORANGE_DEV}" -d "${ORANGE_BROADCAST}" -j DROP
fi
# Apply OpenVPN firewall rules # Apply OpenVPN firewall rules
/usr/local/bin/openvpnctrl --firewall-rules /usr/local/bin/openvpnctrl --firewall-rules