2024-08-15 21:28:45 -06:00
|
|
|
|
2013-12-02 13:04:54 -07:00
|
|
|
config defaults
|
2024-08-15 21:28:45 -06:00
|
|
|
option syn_flood '1'
|
|
|
|
|
option input 'ACCEPT'
|
|
|
|
|
option output 'ACCEPT'
|
|
|
|
|
option forward 'REJECT'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
|
|
|
|
config zone
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'lan'
|
|
|
|
|
option network 'lan'
|
|
|
|
|
option input 'ACCEPT'
|
|
|
|
|
option output 'ACCEPT'
|
|
|
|
|
option forward 'REJECT'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
|
|
|
|
config zone
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'wan'
|
|
|
|
|
option network 'wan'
|
|
|
|
|
option input 'REJECT'
|
|
|
|
|
option output 'ACCEPT'
|
|
|
|
|
option forward 'REJECT'
|
|
|
|
|
option masq '1'
|
|
|
|
|
option mtu_fix '1'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
|
|
|
|
config zone
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'wifi'
|
|
|
|
|
option network 'wifi'
|
|
|
|
|
option input 'REJECT'
|
|
|
|
|
option output 'ACCEPT'
|
|
|
|
|
option forward 'REJECT'
|
|
|
|
|
option mtu_fix '1'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
2014-04-09 00:19:45 -06:00
|
|
|
config zone
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'dtdlink'
|
|
|
|
|
<dtdlink_interfaces>
|
|
|
|
|
option input 'REJECT'
|
|
|
|
|
option output 'ACCEPT'
|
|
|
|
|
option forward 'REJECT'
|
|
|
|
|
option mtu_fix '1'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config zone
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'vpn'
|
|
|
|
|
<vpn_interfaces>
|
|
|
|
|
option input 'REJECT'
|
|
|
|
|
option output 'ACCEPT'
|
|
|
|
|
option forward 'REJECT'
|
|
|
|
|
option mtu_fix '1'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'lan'
|
|
|
|
|
option dest 'wan'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'lan'
|
|
|
|
|
option dest 'wifi'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
2013-12-04 20:29:42 -07:00
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest 'wifi'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
2014-04-09 00:19:45 -06:00
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'lan'
|
|
|
|
|
option dest 'dtdlink'
|
2014-04-09 00:19:45 -06:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest 'dtdlink'
|
2014-04-09 00:19:45 -06:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest 'wifi'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
2024-05-29 01:45:13 -06:00
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest 'dtdlink'
|
2024-05-29 01:45:13 -06:00
|
|
|
|
2024-05-26 17:41:18 -06:00
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest 'wifi'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest 'vpn'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'lan'
|
|
|
|
|
option dest 'vpn'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest 'dtdlink'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest 'vpn'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config forwarding
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest 'vpn'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
2013-12-02 13:04:54 -07:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'Allow-Ping'
|
|
|
|
|
option src 'wifi'
|
|
|
|
|
option proto 'icmp'
|
|
|
|
|
option icmp_type 'echo-request'
|
|
|
|
|
option family 'ipv4'
|
|
|
|
|
option target 'ACCEPT'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
2014-04-09 00:19:45 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'Allow-Ping'
|
|
|
|
|
option src 'dtdlink'
|
|
|
|
|
option proto 'icmp'
|
|
|
|
|
option icmp_type 'echo-request'
|
|
|
|
|
option family 'ipv4'
|
|
|
|
|
option target 'ACCEPT'
|
2014-04-09 00:19:45 -06:00
|
|
|
|
2024-05-26 17:41:18 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'Allow-Ping'
|
|
|
|
|
option src 'vpn'
|
|
|
|
|
option proto 'icmp'
|
|
|
|
|
option icmp_type 'echo-request'
|
|
|
|
|
option family 'ipv4'
|
|
|
|
|
option target 'ACCEPT'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
2016-01-09 16:01:30 -07:00
|
|
|
config include
|
2024-08-15 21:28:45 -06:00
|
|
|
option path '/usr/local/bin/mesh-firewall'
|
|
|
|
|
option fw4_compatible '1'
|
2016-01-09 16:01:30 -07:00
|
|
|
|
2013-12-02 13:04:54 -07:00
|
|
|
config include
|
2024-08-15 21:28:45 -06:00
|
|
|
option path '/etc/firewall.user'
|
|
|
|
|
option fw4_compatible '1'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
2020-06-24 20:08:06 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option name 'Allow-Ping'
|
|
|
|
|
option src 'wan'
|
|
|
|
|
option proto 'icmp'
|
|
|
|
|
option icmp_type 'echo-request'
|
|
|
|
|
option family 'ipv4'
|
|
|
|
|
option target 'ACCEPT'
|
2020-06-24 20:08:06 -06:00
|
|
|
|
2013-12-02 13:04:54 -07:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest_port '2222'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest_port '8080'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
2018-08-20 13:09:47 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest_port '80'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2018-08-20 13:09:47 -06:00
|
|
|
|
2013-12-02 13:04:54 -07:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest_port '698'
|
|
|
|
|
option proto 'udp'
|
|
|
|
|
option target 'ACCEPT'
|
2013-12-02 13:04:54 -07:00
|
|
|
|
2013-12-07 19:38:47 -07:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest_port '23'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2013-12-07 19:38:47 -07:00
|
|
|
|
2014-04-09 00:19:45 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest_port '2222'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2014-04-09 00:19:45 -06:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest_port '8080'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2014-04-09 00:19:45 -06:00
|
|
|
|
2018-08-20 13:09:47 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest_port '80'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2018-08-20 13:09:47 -06:00
|
|
|
|
2014-04-09 00:19:45 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest_port '698'
|
|
|
|
|
option proto 'udp'
|
|
|
|
|
option target 'ACCEPT'
|
2014-04-09 00:19:45 -06:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest_port '23'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2015-04-14 23:31:21 -06:00
|
|
|
|
2024-05-26 17:41:18 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest_port '2222'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest_port '8080'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest_port '80'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest_port '698'
|
|
|
|
|
option proto 'udp'
|
|
|
|
|
option target 'ACCEPT'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest_port '23'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
2015-04-14 23:31:21 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest_port '161'
|
|
|
|
|
option proto 'udp'
|
|
|
|
|
option target 'ACCEPT'
|
2015-04-14 23:31:21 -06:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest_port '161'
|
|
|
|
|
option proto 'udp'
|
|
|
|
|
option target 'ACCEPT'
|
2016-01-05 11:00:22 -07:00
|
|
|
|
2024-05-26 17:41:18 -06:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest_port '161'
|
|
|
|
|
option proto 'udp'
|
|
|
|
|
option target 'ACCEPT'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
2016-01-05 11:00:22 -07:00
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'wifi'
|
|
|
|
|
option dest_port '9090'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2016-01-05 11:00:22 -07:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'dtdlink'
|
|
|
|
|
option dest_port '9090'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
2024-05-26 17:41:18 -06:00
|
|
|
|
|
|
|
|
config rule
|
2024-08-15 21:28:45 -06:00
|
|
|
option src 'vpn'
|
|
|
|
|
option dest_port '9090'
|
|
|
|
|
option proto 'tcp'
|
|
|
|
|
option target 'ACCEPT'
|
