Add a .wanup script to modify the default firewall setup
authorSven Hoexter <sven@timegate.de>
Sat, 22 Jan 2011 10:23:25 +0000 (11:23 +0100)
committerSven Hoexter <sven@timegate.de>
Sat, 22 Jan 2011 10:23:25 +0000 (11:23 +0100)
* Allow bittorrent traffic on the device itself
* Remove a block from the FORWARD table for UDP/500 (ISAKMP)

config/fwmodification.wanup [new file with mode: 0755]
filters6.sh

diff --git a/config/fwmodification.wanup b/config/fwmodification.wanup
new file mode 100755 (executable)
index 0000000..6209deb
--- /dev/null
@@ -0,0 +1,10 @@
+#!/bin/sh
+# Modifications for the default firewall setup
+
+# Allow bittorrent
+iptables -I INPUT 2 -i ppp0 -p tcp --dport 6881:6999 -j ACCEPT
+iptables -I INPUT 2 -i ppp0 -p udp --dport 6881:6999 -j ACCEPT
+
+# Remove ISAKMP filter 
+iptables -D FORWARD -o ppp0 -p udp --dport 500 -j DROP
+
index 0076c3b..9bbfb20 100755 (executable)
@@ -24,5 +24,3 @@ ip6tables -P INPUT ACCEPT
 ip6tables -P OUTPUT ACCEPT
 ip6tables -P FORWARD DROP
 
-
-