'[IPCop-cvs] ipcop/src/rc.d rc.firewall,1.7.2.21,1.7.2.22'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipcop-cvs
Subject:    [IPCop-cvs] ipcop/src/rc.d rc.firewall,1.7.2.21,1.7.2.22
From:       Franck Bourdonnec <franck78 () users ! sourceforge ! net>
Date:       2007-03-22 21:10:13
Message-ID: E1HUUY9-0008Dh-9P () mail ! sourceforge ! net
[Download RAW message or body]

Update of /cvsroot/ipcop/ipcop/src/rc.d
In directory sc8-pr-cvs2.sourceforge.net:/tmp/cvs-serv19665/src/rc.d

Modified Files:
      Tag: IPCOP_v1_4_0
	rc.firewall 
Log Message:
Create iptables chain for OpenVPN, followinf the ipsec system.


Index: rc.firewall
===================================================================
RCS file: /cvsroot/ipcop/ipcop/src/rc.d/Attic/rc.firewall,v
retrieving revision 1.7.2.21
retrieving revision 1.7.2.22
diff -C2 -d -r1.7.2.21 -r1.7.2.22
*** rc.firewall	23 Feb 2007 23:44:29 -0000	1.7.2.21
--- rc.firewall	22 Mar 2007 21:10:11 -0000	1.7.2.22
***************
*** 156,163 ****
  	/sbin/iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
  
! 	# trafic from ipsecX interfaces, before "-i GREEN_DEV" accept everything
  	/sbin/iptables -N IPSECVIRTUAL
  	/sbin/iptables -A INPUT -j IPSECVIRTUAL
  	/sbin/iptables -A FORWARD -j IPSECVIRTUAL
  
  	# localhost and ethernet.
--- 156,166 ----
  	/sbin/iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
  
! 	# trafic from ipsecX/TUN/TAP interfaces, before "-i GREEN_DEV" accept everything
  	/sbin/iptables -N IPSECVIRTUAL
+ 	/sbin/iptables -N OPENSSLVIRTUAL
  	/sbin/iptables -A INPUT -j IPSECVIRTUAL
+ 	/sbin/iptables -A INPUT -j OPENSSLVIRTUAL
  	/sbin/iptables -A FORWARD -j IPSECVIRTUAL
+ 	/sbin/iptables -A FORWARD -j OPENSSLVIRTUAL
  
  	# localhost and ethernet.
***************
*** 184,187 ****
--- 187,194 ----
  	/sbin/iptables -A INPUT -j IPSECPHYSICAL
  
+ 	# OPenSSL
+ 	/sbin/iptables -N OPENSSLPHYSICAL
+ 	/sbin/iptables -A INPUT -j OPENSSLPHYSICAL
+ 
  	# WIRELESS chains
  	/sbin/iptables -N WIRELESSINPUT


-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys-and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
IPCop-cvs mailing list
IPCop-cvs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipcop-cvs
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic