diff options
author | mbm <mbm@3c298f89-4303-0410-b956-a3cf2f4a3e73> | 2005-05-25 02:51:57 +0000 |
---|---|---|
committer | mbm <mbm@3c298f89-4303-0410-b956-a3cf2f4a3e73> | 2005-05-25 02:51:57 +0000 |
commit | d47133d4c587f21b862a174a816bd94a8c76c78e (patch) | |
tree | 33079d70213db7a9dd17e135ed6d3d464e3ec0f7 /openwrt/target/default/target_skeleton/etc/init.d/S45firewall | |
parent | c10f6281f1d7ed04a3e5470a82db4ec739a3a6d0 (diff) |
*** empty log message ***
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@1055 3c298f89-4303-0410-b956-a3cf2f4a3e73
Diffstat (limited to 'openwrt/target/default/target_skeleton/etc/init.d/S45firewall')
-rwxr-xr-x | openwrt/target/default/target_skeleton/etc/init.d/S45firewall | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/openwrt/target/default/target_skeleton/etc/init.d/S45firewall b/openwrt/target/default/target_skeleton/etc/init.d/S45firewall index a506637255..bdb485936a 100755 --- a/openwrt/target/default/target_skeleton/etc/init.d/S45firewall +++ b/openwrt/target/default/target_skeleton/etc/init.d/S45firewall @@ -16,10 +16,18 @@ iptables -N forwarding_rule iptables -t nat -N prerouting_rule iptables -t nat -N postrouting_rule +### Allow SSH from WAN +# iptables -t nat -A prerouting_rule -i $WAN -p tcp --dport 22 -j ACCEPT +# iptables -A input_rule -i $WAN -p tcp --dport 22 -j ACCEPT + ### Port forwarding # iptables -t nat -A prerouting_rule -i $WAN -p tcp --dport 22 -j DNAT --to 192.168.1.2 # iptables -A forwarding_rule -i $WAN -p tcp --dport 22 -d 192.168.1.2 -j ACCEPT +### DMZ (should be placed after port forwarding / accept rules) +# iptables -t nat -A prerouting_rule -i $WAN -j DNAT --to 192.168.1.2 +# iptables -A forwarding_rule -i $WAN -d 192.168.1.2 -j ACCEPT + ### INPUT ### (connections with the router as destination) |