summaryrefslogtreecommitdiff
path: root/package
diff options
context:
space:
mode:
Diffstat (limited to 'package')
-rw-r--r--package/iptables/Makefile2
-rw-r--r--package/iptables/files/firewall.conf6
2 files changed, 3 insertions, 5 deletions
diff --git a/package/iptables/Makefile b/package/iptables/Makefile
index b7f98121e..f5f2d2392 100644
--- a/package/iptables/Makefile
+++ b/package/iptables/Makefile
@@ -9,7 +9,7 @@ PKG_RELEASE:= 1
PKG_MD5SUM:= c67cf30e281a924def6426be0973df56
PKG_DESCR:= The netfilter firewalling software
PKG_SECTION:= net
-PKG_DEPENDS:= kmod-ip-nf-iptables kmod-nf-conntrack kmod-nf-conntrack-ipv4 kmod-nf-nat kmod-ip-nf-target-masquerade kmod-ip-nf-target-reject kmod-ip-nf-filter
+PKG_DEPENDS:= kmod-ip-nf-iptables kmod-nf-conntrack kmod-nf-conntrack-ipv4 kmod-nf-nat kmod-ip-nf-target-masquerade kmod-ip-nf-target-reject kmod-ip-nf-filter kmod-ip-nf-match-state kmod-netfilter-xt-target-tcpmss
PKG_URL:= http://www.netfilter.org
PKG_SITES:= http://www.netfilter.org/projects/iptables/files/ \
ftp://ftp.be.netfilter.org/pub/netfilter/iptables/ \
diff --git a/package/iptables/files/firewall.conf b/package/iptables/files/firewall.conf
index bc9a39c41..2c8faaa34 100644
--- a/package/iptables/files/firewall.conf
+++ b/package/iptables/files/firewall.conf
@@ -1,13 +1,11 @@
#!/bin/sh
-
-
echo "configure /etc/firewall.conf first."
exit 1
### Interfaces
WAN=ppp0
LAN=br0
-WLAN=
+WLAN=wlan0
######################################################################
### Default ruleset
@@ -29,7 +27,7 @@ iptables -P FORWARD DROP
# base case
iptables -A INPUT -m state --state INVALID -j DROP
iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-iptables -A INPUT -p tcp --tcp-flags SYN SYN --tcp-option \! 2 -j DROP
+iptables -A INPUT -p tcp --tcp-flags SYN SYN \! --tcp-option 2 -j DROP
# custom rules
iptables -A INPUT -j input_rule
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-06 07:56:14 +0000