diff options
| author | Silvino Silva <silvino@bk.ru> | 2020-02-26 18:28:28 +0000 |
|---|---|---|
| committer | Silvino Silva <silvino@bk.ru> | 2020-02-26 18:28:28 +0000 |
| commit | 581bdfbf84c80acfd43c56be09aea759a6d3dccd (patch) | |
| tree | b3a474e0ad43b774df5d4fddd300fc0877f3c35d /core/conf/iptables/ipt-firewall.sh | |
| parent | 98a9d702dcf1891b8f3d79d201906ebd361cf507 (diff) | |
| download | doc-581bdfbf84c80acfd43c56be09aea759a6d3dccd.tar.gz | |
iptables update
Diffstat (limited to 'core/conf/iptables/ipt-firewall.sh')
| -rw-r--r-- | core/conf/iptables/ipt-firewall.sh | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/core/conf/iptables/ipt-firewall.sh b/core/conf/iptables/ipt-firewall.sh index 6dc4f4f..c581e6e 100644 --- a/core/conf/iptables/ipt-firewall.sh +++ b/core/conf/iptables/ipt-firewall.sh @@ -1,5 +1,7 @@ #!/bin/bash +. /etc/iptables/ipt-conf.sh + ipt_clear () { echo "clear all iptables tables" @@ -92,7 +94,7 @@ ipt_tables () { egrep -v "^#|^$" x | while IFS= read -r ip do # Append everything to droplist - echo "adding ${ip} to blockip" + #echo "adding ${ip} to blockip" $IPT -A blockip_in -s $ip -j LOG --log-prefix "${SPAMDROPMSG}" $IPT -A blockip_in -s $ip -j DROP $IPT -A blockip_out -d $ip -j LOG --log-prefix "${SPAMDROPMSG}" @@ -242,8 +244,10 @@ ipt_tables () { $IPT -A cli_ftp_out -j RETURN ######## GIT client + $IPT -A cli_git_in -p tcp --sport 873 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT $IPT -A cli_git_in -p tcp --sport 9418 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT $IPT -A cli_git_in -j RETURN + $IPT -A cli_git_out -p tcp --dport 873 --sport 1024:65535 -m state --state NEW,ESTABLISHED -j ACCEPT $IPT -A cli_git_out -p tcp --dport 9418 --sport 1024:65535 -m state --state NEW,ESTABLISHED -j ACCEPT $IPT -A cli_git_out -j RETURN |