free
/
freedombone
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Mesh firewall for babel protocol

This commit is contained in:
Bob Mottram 2018-01-17 13:59:59 +00:00
parent 0ef31c4005
commit 246ecc6c96
2 changed files with 16 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/freedombone-mesh-install
View File

@ -233,6 +233,10 @@ function mesh_firewall {
echo 'ip6tables -A INPUT -p udp --dport 269 -j ACCEPT' >> $MESH_FIREWALL_SCRIPT
echo 'iptables -A INPUT -p tcp --dport 138 -j ACCEPT' >> $MESH_FIREWALL_SCRIPT
echo 'ip6tables -A INPUT -p tcp --dport 138 -j ACCEPT' >> $MESH_FIREWALL_SCRIPT
echo '# Babel' >> $MESH_FIREWALL_SCRIPT
echo 'iptables -A INPUT -p udp --dport 6696 -j ACCEPT' >> $MESH_FIREWALL_SCRIPT
echo 'ip6tables -A INPUT -p udp --dport 6696 -j ACCEPT' >> $MESH_FIREWALL_SCRIPT
chmod +x $MESH_FIREWALL_SCRIPT
echo '[Unit]' > $FIREWALL_FILENAME

13
src/freedombone-utils-mesh
View File

@ -220,6 +220,9 @@ function enable_mesh_firewall {
# OLSR2/MANET
iptables -A INPUT -p udp --dport 269 -j ACCEPT
iptables -A INPUT -p tcp --dport 138 -j ACCEPT
# Babel
iptables -A INPUT -p udp --dport 6696 -j ACCEPT
ip6tables -A INPUT -p udp --dport 6696 -j ACCEPT
ip6tables -A INPUT -p ipv6-icmp -j ACCEPT
@ -253,6 +256,9 @@ function enable_mesh_firewall {
# OLSR2/MANET
ip6tables -A INPUT -p udp --dport 269 -j ACCEPT
ip6tables -A INPUT -p tcp --dport 138 -j ACCEPT
# Babel
iptables -A INPUT -p udp --dport 6696 -j ACCEPT
ip6tables -A INPUT -p udp --dport 6696 -j ACCEPT
# vpn over the internet
@ -304,6 +310,9 @@ function disable_mesh_firewall {
# OLSR2/MANET
iptables -D INPUT -p udp --dport 269 -j ACCEPT
iptables -D INPUT -p tcp --dport 138 -j ACCEPT
# Babel
iptables -D INPUT -p udp --dport 6696 -j ACCEPT
ip6tables -D INPUT -p udp --dport 6696 -j ACCEPT
ip6tables -D INPUT -p tcp --dport $TRACKER_PORT -j ACCEPT
@ -336,7 +345,9 @@ function disable_mesh_firewall {
# OLSR2/MANET
ip6tables -D INPUT -p udp --dport 269 -j ACCEPT
ip6tables -D INPUT -p tcp --dport 138 -j ACCEPT
# Babel
iptables -D INPUT -p udp --dport 6696 -j ACCEPT
ip6tables -D INPUT -p udp --dport 6696 -j ACCEPT
# vpn over the internet
iptables -D INPUT -p tcp --dport 653 -j ACCEPT