From: Alexander Marx Date: Mon, 23 Dec 2013 10:05:04 +0000 (+0100) Subject: Firewall: now it is possible to connect from one ipfire to a green network of another... X-Git-Tag: v2.15-beta1~97^2^2~5 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=c0f99754df9ad6cbdc4675d5568ac94a6ede20c3;p=ipfire-2.x.git Firewall: now it is possible to connect from one ipfire to a green network of another openvpn connected ipfire Please take care to put this into the docu! One can create DROP rules if the remote ipfire should NOT be able to connect to the others internal networks. Therefor you have to take the green interface IP as SOURCE! --- diff --git a/src/initscripts/init.d/firewall b/src/initscripts/init.d/firewall index f23f7f4eb4..be0c8b0227 100644 --- a/src/initscripts/init.d/firewall +++ b/src/initscripts/init.d/firewall @@ -99,7 +99,7 @@ iptables_init() { # Block OpenVPN transfer networks /sbin/iptables -N OVPNBLOCK - for i in INPUT FORWARD OUTPUT; do + for i in INPUT FORWARD; do /sbin/iptables -A ${i} -j OVPNBLOCK done