fix connections to modem

author: Robert "ar" Gerus <ar@bash.org.pl> 2013-03-23 12:00:19 +0100
committer: Robert "ar" Gerus <ar@bash.org.pl> 2013-03-23 12:00:19 +0100
commit: 3491cd19c2deb2ae442f48f3911d07998d3d30a3 (patch)
tree: bcb3ad2c2dddfba08f5f8f78b3e8a51edd17ad83
parent: 4095ac05a102aab2a98c5b09309daef07998424e (diff)
download: old-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.tar.gz
old-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.tar.bz2
old-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.zip
2 files changed, 3 insertions, 0 deletions
diff --git a/fw.globals b/fw.globals
index e568a51..21e2ca8 100644
--- a/fw.globals
+++ b/fw.globals
@@ -6,6 +6,7 @@ IF_LAN="eth1"
 
 # networks:
 NET_LAN="10.24.0.0/16"
+NET_WAN="192.168.0.0/24"
 NET_AR="10.24.20.0/24"
 NET_Q3K="10.24.16.0/24"
 
diff --git a/rules/01-output-snat b/rules/01-output-snat
index 1f708b8..1505e2c 100644
--- a/rules/01-output-snat
+++ b/rules/01-output-snat
@@ -6,4 +6,6 @@ rules() {
     if ${HAVE_WAN2}; then
         iptables --table nat $flag POSTROUTING -s 10.24.20.10 -o ${IF_WAN} -j SNAT --to-source ${HOST_KASHA_WAN2}
     fi
+    # we want to be able to access 192.168.0.1
+    iptables --table nat $flag POSTROUTING -s ${NET_LAN} -d ${NET_WAN} -j SNAT --to-source ${HOST_KASHA_WAN}
 }
author	Robert "ar" Gerus <ar@bash.org.pl>	2013-03-23 12:00:19 +0100
committer	Robert "ar" Gerus <ar@bash.org.pl>	2013-03-23 12:00:19 +0100
commit	3491cd19c2deb2ae442f48f3911d07998d3d30a3 (patch)
tree	bcb3ad2c2dddfba08f5f8f78b3e8a51edd17ad83
parent	4095ac05a102aab2a98c5b09309daef07998424e (diff)
download	old-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.tar.gz old-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.tar.bz2 old-firewall-3491cd19c2deb2ae442f48f3911d07998d3d30a3.zip