]>
Commit | Line | Data |
---|---|---|
4b8a864d KK |
1 | --- firestarter-1.0.3/src/netfilter-script.c.orig 2005-05-06 14:08:24.000000000 +0200 |
2 | +++ firestarter-1.0.3/src/netfilter-script.c 2005-05-06 14:20:33.000000000 +0200 | |
c8dcf998 KK |
3 | @@ -405,7 +405,7 @@ |
4 | " $MPB ip_nat_irc 2> /dev/null\n" | |
5 | "fi\n"); | |
6 | ||
7 | - fprintf (script, "if [ \"EXT_PPP\" = \"on\" ]; then\n" | |
8 | + fprintf (script, "if [ \"$EXT_PPP\" = \"on\" ]; then\n" | |
9 | " $MPB bsd_comp 2> /dev/null\n" | |
10 | " $MPB ppp_deflate 2> /dev/null\n" | |
11 | "fi\n\n"); | |
dbc06f81 KK |
12 | @@ -586,7 +586,7 @@ |
13 | " $IPT -t mangle -A OUTPUT -p tcp -j TOS --dport 8080 --set-tos $TOSOPT\n" | |
14 | " fi\n"); | |
15 | ||
16 | - fprintf (script, " if [ \"$TOS_SERVER\" = \"on\" -a $mangle_supported ]; then\n" | |
17 | + fprintf (script, " if [ \"$TOS_X\" = \"on\" -a $mangle_supported ]; then\n" | |
18 | " # ToS: The X Window System\n" | |
19 | " $IPT -t mangle -A OUTPUT -p tcp -j TOS --dport 22 --set-tos 0x10\n" | |
20 | " $IPT -t mangle -A OUTPUT -p tcp -j TOS --dport 6000:6015 --set-tos 0x08\n" | |
4b8a864d KK |
21 | @@ -768,6 +768,9 @@ |
22 | "if [ \"$NAT\" = \"on\" ]; then\n" | |
23 | " $IPT -A INPUT -i $INIF -d $INIP -j INBOUND # Check LAN to firewall (private ip) traffic\n" | |
24 | " $IPT -A INPUT -i $INIF -d $IP -j INBOUND # Check LAN to firewall (public ip) traffic\n" | |
25 | + " if [ \"$DHCP_SERVER\" = \"on\" ]; then # DHCP requests are permitted from internal network\n" | |
26 | + " $IPT -A INPUT -i $INIF -p udp --dport 67:68 -d 255.255.255.255 -j INBOUND\n" | |
27 | + " fi\n" | |
28 | " if [ \"$INBCAST\" != \"\" ]; then\n" | |
29 | " $IPT -A INPUT -i $INIF -d $INBCAST -j INBOUND # Check LAN to firewall broadcast traffic\n" | |
30 | " fi\n" |