chiark
/
gitweb
/
~mdw
/
firewall
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
fender.m4, ibanez.m4, vampire.m4: Invoke `footables' via `run'.
[firewall]
/
vampire.m4
diff --git
a/vampire.m4
b/vampire.m4
index bb91c7c61a471d30afb5e92cb227eb5404953e8c..48d25b39c2d2eedec8f180e80989bb3caab5daae 100644
(file)
--- a/
vampire.m4
+++ b/
vampire.m4
@@
-63,13
+63,13
@@
dnsserver inbound
ntpclient inbound $ntp_servers
## Provide NTP service to untrusted clients.
ntpclient inbound $ntp_servers
## Provide NTP service to untrusted clients.
-iptables -A inbound -p udp -j ACCEPT \
+
run
iptables -A inbound -p udp -j ACCEPT \
--source-port 123 --destination-port 123 \
-s 172.29.198.0/23
--source-port 123 --destination-port 123 \
-s 172.29.198.0/23
-ip6tables -A inbound -p udp -j ACCEPT \
+
run
ip6tables -A inbound -p udp -j ACCEPT \
--source-port 123 --destination-port 123 \
-s 2001:ba8:1d9::/48
--source-port 123 --destination-port 123 \
-s 2001:ba8:1d9::/48
-ip6tables -A inbound -p udp -j ACCEPT \
+
run
ip6tables -A inbound -p udp -j ACCEPT \
--source-port 123 --destination-port 123 \
-s 2001:8b0:c92::/48
--source-port 123 --destination-port 123 \
-s 2001:8b0:c92::/48