]>
Commit | Line | Data |
---|---|---|
4b8a864d KK |
1 | --- firestarter-1.0.3/src/netfilter-script.c.orig 2005-05-06 14:08:24.000000000 +0200 |
2 | +++ firestarter-1.0.3/src/netfilter-script.c 2005-05-06 14:20:33.000000000 +0200 | |
c8dcf998 KK |
3 | @@ -405,7 +405,7 @@ |
4 | " $MPB ip_nat_irc 2> /dev/null\n" | |
5 | "fi\n"); | |
6 | ||
7 | - fprintf (script, "if [ \"EXT_PPP\" = \"on\" ]; then\n" | |
8 | + fprintf (script, "if [ \"$EXT_PPP\" = \"on\" ]; then\n" | |
9 | " $MPB bsd_comp 2> /dev/null\n" | |
10 | " $MPB ppp_deflate 2> /dev/null\n" | |
11 | "fi\n\n"); | |
4b8a864d KK |
12 | @@ -768,6 +768,9 @@ |
13 | "if [ \"$NAT\" = \"on\" ]; then\n" | |
14 | " $IPT -A INPUT -i $INIF -d $INIP -j INBOUND # Check LAN to firewall (private ip) traffic\n" | |
15 | " $IPT -A INPUT -i $INIF -d $IP -j INBOUND # Check LAN to firewall (public ip) traffic\n" | |
16 | + " if [ \"$DHCP_SERVER\" = \"on\" ]; then # DHCP requests are permitted from internal network\n" | |
17 | + " $IPT -A INPUT -i $INIF -p udp --dport 67:68 -d 255.255.255.255 -j INBOUND\n" | |
18 | + " fi\n" | |
19 | " if [ \"$INBCAST\" != \"\" ]; then\n" | |
20 | " $IPT -A INPUT -i $INIF -d $INBCAST -j INBOUND # Check LAN to firewall broadcast traffic\n" | |
21 | " fi\n" |