summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRobert "ar" Gerus <ar@bash.org.pl>2013-03-23 12:00:19 +0100
committerRobert "ar" Gerus <ar@bash.org.pl>2013-03-23 12:00:19 +0100
commit3491cd19c2deb2ae442f48f3911d07998d3d30a3 (patch)
treebcb3ad2c2dddfba08f5f8f78b3e8a51edd17ad83
parent4095ac05a102aab2a98c5b09309daef07998424e (diff)
downloadold-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.tar.gz
old-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.tar.bz2
old-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.zip
fix connections to modem
-rw-r--r--fw.globals1
-rw-r--r--rules/01-output-snat2
2 files changed, 3 insertions, 0 deletions
diff --git a/fw.globals b/fw.globals
index e568a51..21e2ca8 100644
--- a/fw.globals
+++ b/fw.globals
@@ -6,6 +6,7 @@ IF_LAN="eth1"
# networks:
NET_LAN="10.24.0.0/16"
+NET_WAN="192.168.0.0/24"
NET_AR="10.24.20.0/24"
NET_Q3K="10.24.16.0/24"
diff --git a/rules/01-output-snat b/rules/01-output-snat
index 1f708b8..1505e2c 100644
--- a/rules/01-output-snat
+++ b/rules/01-output-snat
@@ -6,4 +6,6 @@ rules() {
if ${HAVE_WAN2}; then
iptables --table nat $flag POSTROUTING -s 10.24.20.10 -o ${IF_WAN} -j SNAT --to-source ${HOST_KASHA_WAN2}
fi
+ # we want to be able to access 192.168.0.1
+ iptables --table nat $flag POSTROUTING -s ${NET_LAN} -d ${NET_WAN} -j SNAT --to-source ${HOST_KASHA_WAN}
}