webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-23 09:22:59 +02:00
Code Issues Packages Projects Releases Wiki Activity

Move ipsec postrouting rules to a own chain.

Browse Source
This commit is contained in:
Arne Fitzenreiter
2009-12-21 02:26:09 +01:00
parent 72c63a1531
commit b68e5c14b6
3 changed files with 8 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/initscripts/init.d/firewall
View File

@@ -167,7 +167,9 @@ case "$1" in
/sbin/iptables -A INPUT -j OPENSSLVIRTUAL -m comment --comment "OPENSSLVIRTUAL INPUT"
/sbin/iptables -A FORWARD -j IPSECVIRTUAL -m comment --comment "IPSECVIRTUAL FORWARD"
/sbin/iptables -A FORWARD -j OPENSSLVIRTUAL -m comment --comment "OPENSSLVIRTUAL FORWARD"
/sbin/iptables -t nat -N IPSECPOSTROUTING
/sbin/iptables -t nat -A POSTROUTING -j IPSECPOSTROUTING
# Outgoing Firewall
/sbin/iptables -A FORWARD -j OUTGOINGFW