Platon Technologies
not logged in Login Registration
EnglishSlovak
open source software development celebrating 10 years of open source development! Thursday, March 28, 2024

Diff for scripts/shell/firewall/fw-universal.sh between version 2.95 and 2.97

version 2.95, 2013/09/21 03:01:24 version 2.97, 2013/09/28 08:30:57
Line 22 
Line 22 
 # Licensed under terms of GNU General Public License.  # Licensed under terms of GNU General Public License.
 # All rights reserved.  # All rights reserved.
 #  #
 # $Platon: scripts/shell/firewall/fw-universal.sh,v 2.94 2013-09-21 02:57:58 nepto Exp $  # $Platon: scripts/shell/firewall/fw-universal.sh,v 2.96 2013-09-23 08:40:34 nepto Exp $
 #  #
 # Changelog:  # Changelog:
 # 2003-10-24 - created  # 2003-10-24 - created
Line 468  masquerade()
Line 468  masquerade()
         print_info -en "NAT: Masquerading local subnet: $NAT_SUBNET_IFACE --> $NAT_LAN_IFACE"          print_info -en "NAT: Masquerading local subnet: $NAT_SUBNET_IFACE --> $NAT_LAN_IFACE"
   
         if [ "X$XEN_MODE" = "Xon" ]; then          if [ "X$XEN_MODE" = "Xon" ]; then
                 $IPTABLES -t nat -A POSTROUTING -o $NAT_LAN_IFACE -j MASQUERADE                  if [ -n "$NAT_SUBNET_SRC" ]; then
                           NAT_SUBNET_SRC="-s $NAT_SUBNET_SRC";
                   fi
                   $IPTABLES -t nat -A POSTROUTING -o $NAT_LAN_IFACE -j MASQUERADE $NAT_SUBNET_SRC
                 print_info " done."                  print_info " done."
                 print_info "XEN_MODE enabled: masquerade is limited to basic functionality only";                  print_info "XEN_MODE enabled: masquerade is limited to basic functionality only";
                 return;                  return;
Line 516  masquerade()
Line 519  masquerade()
                 fi                  fi
         done          done
   
         #$IPTABLES -t nat -A POSTROUTING -s $localnet -o $NAT_LAN_IFACE -j MASQUERADE          if [ -n "$NAT_SUBNET_SRC" ]; then
         $IPTABLES -t nat -A POSTROUTING -o $NAT_LAN_IFACE -j MASQUERADE                  NAT_SUBNET_SRC="-s $NAT_SUBNET_SRC";
           fi
           $IPTABLES -t nat -A POSTROUTING -o $NAT_LAN_IFACE -j MASQUERADE $NAT_SUBNET_SRC
   
         print_info " done."          print_info " done."
   
Line 1200  allow_input()
Line 1205  allow_input()
 } # }}}  } # }}}
   
 # ACCEPT all packets from our IP address  # ACCEPT all packets from our IP address
 allow_output()  allow_all_output()
 { # {{{  { # {{{
   
         # Povolíme odchozí pakety, které mají naše IP adresy          # Povolíme odchozí pakety, které mají naše IP adresy
Line 1744  case "$1" in
Line 1749  case "$1" in
                 drop_input                  drop_input
                 reject_input                  reject_input
                 allow_input                  allow_input
                 allow_output  
                 allow_icmp                  allow_icmp
                   allow_all_output
                 accept_loopback                  accept_loopback
                 masquerade                  masquerade
                 forward_on                  forward_on

Legend:
Removed from v.2.95  
changed lines
  Added in v.2.97

Platon Group <platon@platon.org> http://platon.org/
Copyright © 2002-2006 Platon Group
Site powered by Metafox CMS
Go to Top