|
|
@@ -64,7 +64,6 @@ setup_forward() {
|
|
|
[[ "$public" =~ ^[0-9]{1,}$ ]] || continue
|
|
|
[[ "$private" =~ ^[0-9]{1,}$ ]] || continue
|
|
|
iptables -A PREROUTING -t nat -i ${wan} -p tcp --dport ${public} -j DNAT --to ${ip}:${private}
|
|
|
- #iptables -A FORWARD -i ${wan} -p tcp --syn --dport ${private} -m conntrack --ctstate NEW --ctproto TCP -j ACCEPT
|
|
|
iptables -A FORWARD -i ${wan} -p tcp --syn -d ${ip} --dport ${private} -m conntrack --ctstate NEW --ctproto TCP -j ACCEPT
|
|
|
done < $confd/FORWARD.tcp
|
|
|
|
|
|
@@ -73,7 +72,6 @@ setup_forward() {
|
|
|
[[ "$public" =~ ^[0-9]{1,}$ ]] || continue
|
|
|
[[ "$private" =~ ^[0-9]{1,}$ ]] || continue
|
|
|
iptables -A PREROUTING -t nat -i ${wan} -p udp --dport ${public} -j DNAT --to ${ip}:${private}
|
|
|
- #iptables -A FORWARD -i ${wan} -p udp --dport ${private} -m conntrack --ctstate NEW --ctproto UDP -j ACCEPT
|
|
|
iptables -A FORWARD -i ${wan} -p udp -d ${ip} --dport ${private} -m conntrack --ctstate NEW --ctproto UDP -j ACCEPT
|
|
|
done < $confd/FORWARD.udp
|
|
|
|
