Marown/setup-ipsec-vpn
1
0
Fork 0
mirror of https://github.com/hwdsl2/setup-ipsec-vpn.git synced 2024-06-26 23:55:54 +02:00
Code Issues Packages Projects Releases Wiki Activity

Check for iptables-persistent and copy new rules

Browse Source
This commit is contained in:
hwdsl2 2016-01-22 11:14:58 -06:00
parent ab98a9e6b0
commit f8b91f65a4
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
vpnsetup.sh
View File

@ -327,6 +327,11 @@ iptables -t nat -I POSTROUTING -s 192.168.42.0/24 -o eth+ -j SNAT --to-source "$
echo "# Modified by hwdsl2 VPN script" > /etc/iptables.rules
/sbin/iptables-save >> /etc/iptables.rules
fi
# Update rules for iptables-persistent
if [ -f /etc/iptables/rules.v4 ]; then
/bin/cp -f /etc/iptables/rules.v4 "/etc/iptables/rules.v4.old-${SYS_DT}"
/bin/cp -f /etc/iptables.rules /etc/iptables/rules.v4
fi
fi
# Create basic IP6Tables (IPv6) rules
@ -346,6 +351,11 @@ cat > /etc/ip6tables.rules <<EOF
-A INPUT -j DROP
COMMIT
EOF
# Update rules (IPv6) for iptables-persistent
if [ -f /etc/iptables/rules.v6 ]; then
/bin/cp -f /etc/iptables/rules.v6 "/etc/iptables/rules.v6.old-${SYS_DT}"
/bin/cp -f /etc/ip6tables.rules /etc/iptables/rules.v6
fi
fi
# Load IPTables rules at system boot