Diff for scripts/shell/firewall/fw-universal.sh between version 2.11 and 2.12
version 2.11, 2005/01/13 13:31:54 |
version 2.12, 2005/01/16 10:55:39 |
|
|
# Licensed under terms of GNU General Public License. |
# Licensed under terms of GNU General Public License. |
# All rights reserved. |
# All rights reserved. |
# |
# |
# $Platon: scripts/shell/firewall/fw-universal.sh,v 2.10 2005/01/04 23:56:23 rajo Exp $ |
# $Platon: scripts/shell/firewall/fw-universal.sh,v 2.11 2005/01/13 13:31:54 rajo Exp $ |
# |
# |
# Changelog: |
# Changelog: |
# 2003-10-24 - created |
# 2003-10-24 - created |
|
|
echo -en " $type" |
echo -en " $type" |
$IPTABLES -A FORWARD -p ICMP --icmp-type $type -j ACCEPT |
$IPTABLES -A FORWARD -p ICMP --icmp-type $type -j ACCEPT |
done |
done |
|
#$IPTABLES -A FORWARD -p ICMP -j LOG --log-prefix "FWD ICMP: " |
echo " done." |
echo " done." |
|
|
# Keep state of connections from private subnets |
# Keep state of connections from private subnets |
|
|
done |
done |
echo " done." |
echo " done." |
fi |
fi |
|
if [ ! -z "$ALL_ACCEPT_INPUT_UDP" ]; then |
|
echo -en "Accepting ALL INPUT UDP connections on ports:" |
|
for port in $ALL_ACCEPT_INPUT_UDP; do |
|
for iface in $INTERFACES; do |
|
ip="IP_$iface"; |
|
echo -en " $port($iface)" |
|
$IPTABLES -A INPUT -i $iface -p UDP --dport $port -j ACCEPT |
|
done |
|
done |
|
echo " done." |
|
fi |
|
|
for iface in $INTERFACES; do |
for iface in $INTERFACES; do |
ip="IP_$iface"; |
ip="IP_$iface"; |
|
|
$IPTABLES -A INPUT -i $iface -d ${!ip} -p ICMP --icmp-type $type -j ACCEPT |
$IPTABLES -A INPUT -i $iface -d ${!ip} -p ICMP --icmp-type $type -j ACCEPT |
done |
done |
done |
done |
|
#$IPTABLES -A INPUT -p ICMP -j LOG --log-prefix "IN ICMP: " |
|
#$IPTABLES -A OUTPUT -p ICMP -j LOG --log-prefix "OUT ICMP: " |
echo " done." |
echo " done." |
|
|
} # }}} |
} # }}} |
Platon Group <platon@platon.org> http://platon.org/
|
|