allow GRE protocol in default firewall settings

author Felix Fietkau <nbd@openwrt.org>

Tue, 22 Mar 2005 13:05:35 +0000 (13:05 +0000)

committer Felix Fietkau <nbd@openwrt.org>

Tue, 22 Mar 2005 13:05:35 +0000 (13:05 +0000)
author Felix Fietkau <nbd@openwrt.org>
Tue, 22 Mar 2005 13:05:35 +0000 (13:05 +0000)
committer Felix Fietkau <nbd@openwrt.org>
Tue, 22 Mar 2005 13:05:35 +0000 (13:05 +0000)
diff --git a/target/default/target_skeleton/etc/init.d/S45firewall b/target/default/target_skeleton/etc/init.d/S45firewall

index 49b9df0..9bcb11a 100755 (executable)
--- a/target/default/target_skeleton/etc/init.d/S45firewall
+++ b/target/default/target_skeleton/etc/init.d/S45firewall
@@ -12,7 +12,8 @@ done
  
  $IPT -t filter -A INPUT -m state --state INVALID -j DROP
  $IPT -t filter -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT 
-$IPT -t filter -A INPUT -p icmp -j ACCEPT 
+$IPT -t filter -A INPUT -p icmp -j ACCEPT
+$IPT -t filter -A INPUT -p 47 -j ACCEPT        # allow GRE
  $IPT -t filter -A INPUT -i $WAN -p tcp -j REJECT --reject-with tcp-reset 
  $IPT -t filter -A INPUT -i $WAN -j REJECT --reject-with icmp-port-unreachable 
  $IPT -t filter -A FORWARD -m state --state INVALID -j DROP
author	Felix Fietkau <nbd@openwrt.org>
	Tue, 22 Mar 2005 13:05:35 +0000 (13:05 +0000)
committer	Felix Fietkau <nbd@openwrt.org>
	Tue, 22 Mar 2005 13:05:35 +0000 (13:05 +0000)