diff options
author | James Meyer <james.meyer@operamail.com> | 2014-02-16 23:50:45 (GMT) |
---|---|---|
committer | James Meyer <james.meyer@operamail.com> | 2014-02-19 19:03:03 (GMT) |
commit | cdfb9e4bf2706feee766cae336e31ca21a1bd73f (patch) | |
tree | f4770b1abaf07d19701f2b9c0a7b90bc65bcac68 /abs/core/iptables/simple_firewall.rules | |
parent | deede5e40d1a8d27388f25a90a1413f269d60a17 (diff) | |
download | linhes_pkgbuild-cdfb9e4bf2706feee766cae336e31ca21a1bd73f.zip linhes_pkgbuild-cdfb9e4bf2706feee766cae336e31ca21a1bd73f.tar.gz linhes_pkgbuild-cdfb9e4bf2706feee766cae336e31ca21a1bd73f.tar.bz2 |
iproute2, iptables, iputils:
update binary path to /usr/bin
refs #961
Diffstat (limited to 'abs/core/iptables/simple_firewall.rules')
-rw-r--r-- | abs/core/iptables/simple_firewall.rules | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/abs/core/iptables/simple_firewall.rules b/abs/core/iptables/simple_firewall.rules index e1604cc..63426b0 100644 --- a/abs/core/iptables/simple_firewall.rules +++ b/abs/core/iptables/simple_firewall.rules @@ -3,7 +3,7 @@ :FORWARD DROP [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -p icmp -j ACCEPT --A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT +-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -p tcp -j REJECT --reject-with tcp-reset -A INPUT -p udp -j REJECT --reject-with icmp-port-unreachable |