/sbin/iptables -N WIRELESSFORWARD
/sbin/iptables -A FORWARD -m conntrack --ctstate NEW -j WIRELESSFORWARD
+ # OpenVPN
+ /sbin/iptables -N OVPNINPUT
+ /sbin/iptables -A INPUT -j OVPNINPUT
+
# TOR
/sbin/iptables -N TOR_INPUT
/sbin/iptables -A INPUT -j TOR_INPUT
/etc/sysconfig/firewall.local start
fi
- # run openvpn
- /usr/local/bin/openvpnctrl --create-chains-and-rules
+ # Apply OpenVPN firewall rules
+ /usr/local/bin/openvpnctrl --firewall-rules
# run wirelessctrl
/usr/local/bin/wirelessctrl
/usr/sbin/firewall-policy
# read new firewall
- /usr/local/bin/forwardfwctrl
+ /usr/local/bin/firewallctrl
if [ "$DROPINPUT" == "on" ]; then
/sbin/iptables -A INPUT -m limit --limit 10/minute -j LOG --log-prefix "DROP_INPUT"