nils/gluon
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge remote-tracking branch 'origin/firewall-multicast'

Browse Source
This commit is contained in:
Matthias Schiffer 2016-02-03 08:40:20 +01:00
commit 6554cc21ab
2 changed files with 22 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
package/gluon-neighbour-info/Makefile
View File

@ -32,6 +32,8 @@ define Build/Compile
endef endef
define Package/gluon-neighbour-info/install define Package/gluon-neighbour-info/install
$(CP) ./files/* $(1)/
$(INSTALL_DIR) $(1)/usr/bin $(INSTALL_DIR) $(1)/usr/bin
$(INSTALL_BIN) $(PKG_BUILD_DIR)/gluon-neighbour-info $(1)/usr/bin/ $(INSTALL_BIN) $(PKG_BUILD_DIR)/gluon-neighbour-info $(1)/usr/bin/
endef endef

20
package/gluon-neighbour-info/files/lib/gluon/upgrade/400-neighbour-info-firewall Executable file
View File

@ -0,0 +1,20 @@
#!/usr/bin/lua
local uci = require('luci.model.uci').cursor()
-- Allow incoming respondd replies to queries on WAN
-- If the query was via multicast, the response isn't matched by --state RELATED
uci:section('firewall', 'rule', 'wan_respondd_reply',
{
name = 'wan_respondd_reply',
src = 'wan',
src_ip = 'fe80::/64',
src_port = '1001',
dest_port = '32768:61000', -- see /proc/sys/net/ipv4/ip_local_port_range
proto = 'udp',
target = 'ACCEPT',
}
)
uci:save('firewall')
uci:commit('firewall')