firewall: fix UPNPFW chain/rules creation order.

author Arne Fitzenreiter <arne_f@ipfire.org>

Fri, 8 Mar 2013 16:31:38 +0000 (17:31 +0100)

committer Arne Fitzenreiter <arne_f@ipfire.org>

Fri, 8 Mar 2013 16:31:38 +0000 (17:31 +0100)
author Arne Fitzenreiter <arne_f@ipfire.org>
Fri, 8 Mar 2013 16:31:38 +0000 (17:31 +0100)
committer Arne Fitzenreiter <arne_f@ipfire.org>
Fri, 8 Mar 2013 16:31:38 +0000 (17:31 +0100)
diff --git a/src/initscripts/init.d/firewall b/src/initscripts/init.d/firewall

index cc6b6190eb8ecb7c376934b1aa74968915c46c6c..b6dd7d5bd9b4aa32e7fb7f4c80d3e3fd92312ee4 100644 (file)
--- a/src/initscripts/init.d/firewall
+++ b/src/initscripts/init.d/firewall
@@ -252,9 +252,8 @@ case "$1" in
         # upnp chain for our upnp daemon
         /sbin/iptables -t nat -N UPNPFW
         /sbin/iptables -t nat -A PREROUTING -j UPNPFW
-       /sbin/iptables -A FORWARD -m state --state NEW -j UPNPFW
-       # This chain only contains dummy rules.
         /sbin/iptables -N UPNPFW
+       /sbin/iptables -A FORWARD -m state --state NEW -j UPNPFW
  
         # Custom mangle chain (for port fowarding)
         /sbin/iptables -t mangle -N PORTFWMANGLE
author	Arne Fitzenreiter <arne_f@ipfire.org>
	Fri, 8 Mar 2013 16:31:38 +0000 (17:31 +0100)
committer	Arne Fitzenreiter <arne_f@ipfire.org>
	Fri, 8 Mar 2013 16:31:38 +0000 (17:31 +0100)