From 177f831e141f1933679c64040390ea0aa325c081 Mon Sep 17 00:00:00 2001
From: AE6XE <joe@ayerscasa.com>
Date: Mon, 15 Jun 2015 22:10:21 -0700
Subject: [PATCH] bugfix:  tunnel firewall rules update for Barrier Breaker
 chain rename

---
 files/usr/local/bin/vtun_up | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/files/usr/local/bin/vtun_up b/files/usr/local/bin/vtun_up
index c1041fdc..402831ec 100755
--- a/files/usr/local/bin/vtun_up
+++ b/files/usr/local/bin/vtun_up
@@ -31,9 +31,9 @@ if [ $rules_exist -eq 0 -a "$action" = "up" ] ; then
         iptables -N zone_vpn_DROP
         iptables -N zone_vpn_REJECT
         iptables -N zone_vpn_forward
-        iptables -A forward -i tun+ -j zone_vpn_forward
-        iptables -A input -i tun+ -j zone_vpn
-        iptables -A output -j zone_vpn_ACCEPT
+        iptables -I delegate_forward 3 -i tun+ -j zone_vpn_forward
+        iptables -I delegate_input 3 -i tun+ -j zone_vpn
+        iptables -I delegate_output 3 -j zone_vpn_ACCEPT
         iptables -A zone_vpn -p icmp -m icmp --icmp-type 8 -j ACCEPT
         iptables -A zone_vpn -p tcp -m tcp --dport 2222 -j ACCEPT
         iptables -A zone_vpn -p tcp -m tcp --dport 8080 -j ACCEPT
@@ -92,9 +92,9 @@ if [ $inf_count -eq 0 -a "$action" = "down" ] ; then
         iptables -D zone_vpn -p tcp -m tcp --dport 8080 -j ACCEPT
         iptables -D zone_vpn -p tcp -m tcp --dport 2222 -j ACCEPT
         iptables -D zone_vpn -p icmp -m icmp --icmp-type 8 -j ACCEPT
-        iptables -D output -j zone_vpn_ACCEPT
-        iptables -D input -i tun+ -j zone_vpn
-        iptables -D forward -i tun+ -j zone_vpn_forward
+        iptables -D delegate_output -j zone_vpn_ACCEPT
+        iptables -D delegate_input -i tun+ -j zone_vpn
+        iptables -D delegate_forward -i tun+ -j zone_vpn_forward
         iptables -X zone_vpn_REJECT
         iptables -X zone_vpn_DROP
         iptables -X zone_vpn_ACCEPT