summaryrefslogtreecommitdiffstats
path: root/rules
diff options
context:
space:
mode:
authorRobert "ar" Gerus <ar@bash.org.pl>2013-03-12 16:12:58 +0100
committerRobert "ar" Gerus <ar@bash.org.pl>2013-03-12 16:12:58 +0100
commiteee9b8d62726163c146930e8d141082b7b24591e (patch)
tree75ae7b6086608af055f7e730c0f4260cd582f0f6 /rules
parent84cf596dda61d491428c5802977300bd1cc01700 (diff)
downloadold-firewall-eee9b8d62726163c146930e8d141082b7b24591e.tar.gz
old-firewall-eee9b8d62726163c146930e8d141082b7b24591e.tar.bz2
old-firewall-eee9b8d62726163c146930e8d141082b7b24591e.tar.xz
old-firewall-eee9b8d62726163c146930e8d141082b7b24591e.zip
fuckitall
Diffstat (limited to 'rules')
-rw-r--r--rules/04-kasha-local-connections8
1 files changed, 4 insertions, 4 deletions
diff --git a/rules/04-kasha-local-connections b/rules/04-kasha-local-connections
index f3eaabf..0498b79 100644
--- a/rules/04-kasha-local-connections
+++ b/rules/04-kasha-local-connections
@@ -1,7 +1,7 @@
#!/bin/bah
rules() {
- iptables -t filter $flag OUTPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p tcp --dport 53 -j ACCEPT
- iptables -t filter $flag OUTPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p udp --dport 53 -j ACCEPT
-
- iptables -t filter $flag INPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
+ iptables -t filter $flag OUTPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p tcp -m tcp --dport 53 -j ACCEPT
+ iptables -t filter $flag OUTPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p udp -m udp --dport 53 -j ACCEPT
+ iptables -t filter $flag INPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p tcp -m tcp --dport 53 -j ACCEPT
+ iptables -t filter $flag INPUT -s 127.0.0.0/8 -d 127.0.0.0/8 -p udp -m udp --dport 53 -j ACCEPT
}