bakabtw/packages
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[packages] nodogsplash: fix use of deprecated iptables syntax

Browse Source 
Based on http://patchwork.openwrt.org/patch/2256/ by Moritz Warning <moritzwarning@web.de>

git-svn-id: svn://svn.openwrt.org/openwrt/packages@32571 3c298f89-4303-0410-b956-a3cf2f4a3e73
This commit is contained in:
jow
2012-07-01 11:44:23 +00:00
parent aaf9bd71cc
commit 486f5cb5ae
2 changed files with 13 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
net/nodogsplash/patches/002-deprecated_iptables_syntax.patch Normal file
View File

@ -0,0 +1,11 @@
--- a/src/fw_iptables.c
+++ b/src/fw_iptables.c
@@ -449,7 +449,7 @@ iptables_fw_init(void) {
/* CHAIN_TO_ROUTER, related and established packets ACCEPT */
rc |= iptables_do_command("-t filter -A " CHAIN_TO_ROUTER " -m state --state RELATED,ESTABLISHED -j ACCEPT");
/* CHAIN_TO_ROUTER, bogus SYN packets DROP */
- rc |= iptables_do_command("-t filter -A " CHAIN_TO_ROUTER " -p tcp --tcp-flags SYN SYN --tcp-option \\! 2 -j DROP");
+ rc |= iptables_do_command("-t filter -A " CHAIN_TO_ROUTER " -p tcp --tcp-flags SYN SYN \\! --tcp-option 2 -j DROP");
/* CHAIN_TO_ROUTER, packets to HTTP listening on gw_port on router ACCEPT */
rc |= iptables_do_command("-t filter -A " CHAIN_TO_ROUTER " -p tcp --dport %d -j ACCEPT", gw_port);