McUles
/
firmware
forked from freifunk-franken/firmware
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

ssh reopened in firewall config for debugging purposes, should be closed again in stable release

This commit is contained in:
Bjoern Franke 2012-11-23 17:41:58 +01:00
parent bdb4bdb967
commit 2083df18d1
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
bsp/default/root_file_system/etc/firewall.user
View File

@ -7,5 +7,7 @@ iptables -A FORWARD -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-
# Das wirkt bei kleinen Geräten wir ein DOS
WAN=$(uci get network.wan.ifname)
iptables -A INPUT -i $WAN -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
#ssh open for debugging purposes, should be removed in stable release
iptables -A INPUT -i $WAN -p tcp --dport 22 -j ACCEPT
iptables -A INPUT -i $WAN -j REJECT