X-Git-Url: http://git.ipfire.org/?p=people%2Fteissler%2Fipfire-2.x.git;a=blobdiff_plain;f=config%2Fforwardfw%2Ffirewall-policy;h=459c1a554e09519fdba98fca3cbe792f69a871bf;hp=0a5cd14b0c9366938f57434daaa780b54627433d;hb=7f25a65fc1d53178453ad8cb820a9251a8755402;hpb=e17121fee73ba9adcc2d102d0127695613b780e8

diff --git a/config/forwardfw/firewall-policy b/config/forwardfw/firewall-policy
index 0a5cd14b0..459c1a554 100755
--- a/config/forwardfw/firewall-policy
+++ b/config/forwardfw/firewall-policy
@@ -30,6 +30,8 @@ else
 	if [  "$BLUE_DEV" ] && [ "$IFACE" ]; then
 		/sbin/iptables -A POLICYFWD -i blue0 ! -o $IFACE -j DROP 
 	fi
+	/sbin/iptables -A POLICYFWD -s "$ORANGE_NETADDRESS"/"$ORANGE_NETMASK" -d "$BLUE_NETADDRESS"/"$BLUE_NETMASK" -j DROP
+	/sbin/iptables -A POLICYFWD -s "$ORANGE_NETADDRESS"/"$ORANGE_NETMASK" -d "$GREEN_NETADDRESS"/"$GREEN_NETMASK" -j DROP
 	/sbin/iptables -A POLICYFWD -j ACCEPT 
 	/sbin/iptables -A POLICYFWD -m comment --comment "DROP_FORWARD" -j DROP
 fi