free
/
freedomboneeee
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

input rather than forward

This commit is contained in:
Bob Mottram 2017-04-15 12:04:04 +01:00
parent 71b0bb2b63
commit 5630f6eed1
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
src/freedombone-utils-firewall
View File

@ -405,8 +405,8 @@ function firewall_block_domain {
blocked_domain="$1" blocked_domain="$1"
if ! grep "$blocked_domain" $FIREWALL_DOMAINS; then if ! grep "$blocked_domain" $FIREWALL_DOMAINS; then
hexstr=$(domain_to_hex_string $blocked_domain) hexstr=$(domain_to_hex_string $blocked_domain)
iptables -I FORWARD -p udp --dport 53 -m string --hex-string "$hexstr" --algo bm -j DROP iptables -A INPUT -p udp --dport 53 -m string --hex-string "$hexstr" --algo bm -j DROP
iptables -I FORWARD -p tcp --dport 53 -m string --hex-string "$hexstr" --algo bm -j DROP iptables -A INPUT -p tcp --dport 53 -m string --hex-string "$hexstr" --algo bm -j DROP
echo "${blocked_domain}" >> $FIREWALL_DOMAINS echo "${blocked_domain}" >> $FIREWALL_DOMAINS
save_firewall_settings save_firewall_settings
fi fi
@ -416,8 +416,8 @@ function firewall_unblock_domain {
unblocked_domain="$1" unblocked_domain="$1"
if grep "${unblocked_domain}" $FIREWALL_DOMAINS; then if grep "${unblocked_domain}" $FIREWALL_DOMAINS; then
hexstr=$(domain_to_hex_string $unblocked_domain) hexstr=$(domain_to_hex_string $unblocked_domain)
iptables -D FORWARD -p udp --dport 53 -m string --hex-string "$hexstr" --algo bm -j DROP iptables -D INPUT -p udp --dport 53 -m string --hex-string "$hexstr" --algo bm -j DROP
iptables -D FORWARD -p tcp --dport 53 -m string --hex-string "$hexstr" --algo bm -j DROP iptables -D INPUT -p tcp --dport 53 -m string --hex-string "$hexstr" --algo bm -j DROP
sed -i "/${unblocked_domain}/d" $FIREWALL_DOMAINS sed -i "/${unblocked_domain}/d" $FIREWALL_DOMAINS
save_firewall_settings save_firewall_settings
fi fi