chiark
/
gitweb
/
~mdw
/
firewall
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
functions: Move NTP server list out of line.
[firewall]
/
functions.m4
diff --git
a/functions.m4
b/functions.m4
index d059de6cb1c2fea1e39ab618836e1652e9b603ad..2267af617218e0c0d56710c62a918abc4c7651c5 100644
(file)
--- a/
functions.m4
+++ b/
functions.m4
@@
-289,11
+289,12
@@
allowservices () {
## Add rules to CHAIN to allow NTP with NTPSERVERs.
ntpclient () {
set -e
## Add rules to CHAIN to allow NTP with NTPSERVERs.
ntpclient () {
set -e
- chain=$1; shift
- for ntp; do
- run iptables -A $chain -s $ntp -j ACCEPT \
- -p udp --source-port 123 --destination-port 123
- done
+ ntpchain=$1; shift
+
+ clearchain ntp-servers
+ for ntp; do run iptables -A ntp-servers -j ACCEPT -s $ntp; done
+ run iptables -A $ntpchain -j ntp-servers \
+ -p udp --source-port 123 --destination-port 123
}
## dnsresolver CHAIN
}
## dnsresolver CHAIN
~mdw / firewall / blobdiff