free
/
freedombone
關注 1
收藏 0
複製 0
程式碼 問題 0 合併請求 0 版本發佈 0 Wiki 活動
瀏覽代碼

avahi ports

Bob Mottram 9 年之前
父節點
477f508a88
當前提交
7ba4cd03d8
共有 1 個檔案被更改,包括 18 行新增3 行删除
分割檢視 顯示文件統計
  1. 18
    3
      src/freedombone

+ 18
- 3
src/freedombone 查看文件 

@@ -5810,6 +5810,23 @@ function configure_firewall_for_voip {
5810 5810 
   echo 'configure_firewall_for_voip' >> $COMPLETION_FILE
5811 5811 
 }
5812 5812
5813 
+function configure_firewall_for_avahi {
5814 
+  if grep -Fxq "configure_firewall_for_avahi" $COMPLETION_FILE; then
5815 
+      return
5816 
+  fi
5817 
+  if [[ $ENABLE_CJDNS != "yes" && $ENABLE_BATMAN != "yes" && $ENABLE_BABEL != "yes" ]]; then
5818 
+      return
5819 
+  fi
5820 
+  iptables -A INPUT -p tcp -m state -m tcp --dport 548 --state NEW -j ACCEPT
5821 
+  iptables -A INPUT -p tcp -m state -m udp --dport 548 --state NEW -j ACCEPT
5822 
+  iptables -A INPUT -p tcp -m state -m tcp --dport 5353 --state NEW -j ACCEPT
5823 
+  iptables -A INPUT -p tcp -m state -m udp --dport 5353 --state NEW -j ACCEPT
5824 
+  iptables -A INPUT -p tcp -m state -m tcp --dport 5354 --state NEW -j ACCEPT
5825 
+  iptables -A INPUT -p tcp -m state -m udp --dport 5354 --state NEW -j ACCEPT
5826 
+  save_firewall_settings
5827 
+  echo 'configure_firewall_for_avahi' >> $COMPLETION_FILE
5828 
+}
5829 
+
5813 5830 
 function configure_firewall_for_cjdns {
5814 5831 
   if grep -Fxq "configure_firewall_for_cjdns" $COMPLETION_FILE; then
5815 5832 
       return
 
@@ -5832,8 +5849,6 @@ function configure_firewall_for_batman {
5832 5849 
   fi
5833 5850 
   # DHCP
5834 5851 
   iptables -A INPUT -i eth0 -p udp --dport 547 -j ACCEPT
5835 
-  iptables -A INPUT -i $WIFI_INTERFACE -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT
5836 
-  ip6tables -A INPUT -i $WIFI_INTERFACE -p udp --dport 5353 -j ACCEPT
5837 5852
5838 5853 
   save_firewall_settings
5839 5854 
   echo 'configure_firewall_for_batman' >> $COMPLETION_FILE
 
@@ -5847,7 +5862,6 @@ function configure_firewall_for_babel {
5847 5862 
       return
5848 5863 
   fi
5849 5864 
   iptables -A INPUT -i $WIFI_INTERFACE -p udp --dport $BABEL_PORT -j ACCEPT
5850 
-  iptables -A INPUT -i $WIFI_INTERFACE -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT
5851 5865 
   save_firewall_settings
5852 5866 
   echo 'configure_firewall_for_babel' >> $COMPLETION_FILE
5853 5867 
 }
 
@@ -10126,6 +10140,7 @@ configure_firewall_for_dns
10126 10140 
 configure_firewall_for_ftp
10127 10141 
 configure_firewall_for_web_access
10128 10142 
 configure_firewall_for_voip
10143 
+configure_firewall_for_avahi
10129 10144 
 remove_proprietary_repos
10130 10145 
 change_debian_repos
10131 10146 
 enable_backports