it should work now.
parent
15156bc1cb
commit
6879b88bfd
|
@ -1,9 +1,10 @@
|
||||||
#!/bin/bah
|
#!/bin/bah
|
||||||
rules() {
|
rules() {
|
||||||
iptables -t filter $flag INPUT -i lo -j ACCEPT
|
for chain in OUTPUT INPUT; do
|
||||||
iptables -t filter $flag OUTPUT -o lo -j ACCEPT
|
for proto in tcp udp; do
|
||||||
iptables -t filter $flag OUTPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p tcp -m tcp --sport 53 -j ACCEPT
|
for type in s d; do
|
||||||
iptables -t filter $flag OUTPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p udp -m udp --sport 53 -j ACCEPT
|
iptables -t filter $flag INPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p ${proto} -m ${proto} --${type}port 53 -j ACCEPT;
|
||||||
iptables -t filter $flag INPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p tcp -m tcp --dport 53 -j ACCEPT
|
done
|
||||||
iptables -t filter $flag INPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p udp -m udp --dport 53 -j ACCEPT
|
done
|
||||||
|
done
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in New Issue