diff options
| author | Guillaume Cottenceau <gc@mandriva.com> | 2001-05-15 14:36:31 +0000 |
|---|---|---|
| committer | Guillaume Cottenceau <gc@mandriva.com> | 2001-05-15 14:36:31 +0000 |
| commit | 002d379bf40613a5d2e572d329a88a42c0b56e59 (patch) | |
| tree | f4516f00780e3dd50129ee8efd1a0ba1121f20c8 | |
| parent | f1c2137e28e0eabf32d343953693c0626a5077b1 (diff) | |
| download | drakx-002d379bf40613a5d2e572d329a88a42c0b56e59.tar drakx-002d379bf40613a5d2e572d329a88a42c0b56e59.tar.gz drakx-002d379bf40613a5d2e572d329a88a42c0b56e59.tar.bz2 drakx-002d379bf40613a5d2e572d329a88a42c0b56e59.tar.xz drakx-002d379bf40613a5d2e572d329a88a42c0b56e59.zip | |
full path for iptables
| -rwxr-xr-x | perl-install/standalone/drakgw | 19 |
1 files changed, 11 insertions, 8 deletions
diff --git a/perl-install/standalone/drakgw b/perl-install/standalone/drakgw index 5a69ae0c4..ec545faaa 100755 --- a/perl-install/standalone/drakgw +++ b/perl-install/standalone/drakgw @@ -457,20 +457,20 @@ echo 1 > /proc/sys/net/ipv4/ip_forward # In the NAT table (-t nat), Append a rule (-A) after routing (POSTROUTING) # which says to MASQUERADE the connection (-j MASQUERADE). -iptables -t nat -A POSTROUTING -s $lan_address.0/24 -j MASQUERADE +/sbin/iptables -t nat -A POSTROUTING -s $lan_address.0/24 -j MASQUERADE # Allows forwarding specifically to our LAN -iptables -A FORWARD -s $lan_address.0/24 -j ACCEPT +/sbin/iptables -A FORWARD -s $lan_address.0/24 -j ACCEPT # Allow dhcp requests -iptables -A INPUT -i $device -p udp --sport bootpc --dport bootps -j ACCEPT -iptables -A INPUT -i $device -p tcp --sport bootpc --dport bootps -j ACCEPT -iptables -A INPUT -i $device -p udp --sport bootps --dport bootpc -j ACCEPT -iptables -A INPUT -i $device -p tcp --sport bootps --dport bootpc -j ACCEPT +/sbin/iptables -A INPUT -i $device -p udp --sport bootpc --dport bootps -j ACCEPT +/sbin/iptables -A INPUT -i $device -p tcp --sport bootpc --dport bootps -j ACCEPT +/sbin/iptables -A INPUT -i $device -p udp --sport bootps --dport bootpc -j ACCEPT +/sbin/iptables -A INPUT -i $device -p tcp --sport bootps --dport bootpc -j ACCEPT # Allow dns requests -iptables -A INPUT -i $device -p udp --dport domain -j ACCEPT -iptables -A INPUT -i $device -p tcp --dport domain -j ACCEPT +/sbin/iptables -A INPUT -i $device -p udp --dport domain -j ACCEPT +/sbin/iptables -A INPUT -i $device -p tcp --dport domain -j ACCEPT )); chmod 0700, $rc_firewall_24; @@ -656,6 +656,9 @@ Click on Configure to launch the setup wizard.", $setup_state)); #------------------------------------------------- #- $Log$ +#- Revision 1.43 2001/05/15 14:36:31 gc +#- full path for iptables +#- #- Revision 1.42 2001/04/12 13:50:24 gc #- add some rule so later on tinyfirewall will not prevent everything from working #- |