| 216,6 → 216,9 |
|---|
| $IPTABLES -A FORWARD -i $TUNIF -p icmp -d $public_ip_mask -j REJECT --reject-with icmp-port-unreachable |
| $IPTABLES -A FORWARD -i $TUNIF -p tcp -d $public_ip_mask -j REJECT --reject-with tcp-reset |
| fi |
| # Autorisation des retours de connexions légitimes |
| # Allow conntrack |
| $IPTABLES -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT |
| |
| # If protocols filter is activate |
| if [ $PROTOCOLS_FILTERING = on ]; then |
| 267,9 → 270,6 |
|---|
| $IPTABLES -A FORWARD -i $TUNIF -p udp -j REJECT --reject-with icmp-port-unreachable |
| $IPTABLES -A FORWARD -i $TUNIF -p icmp -j REJECT |
| fi |
| # Autorisation des retours de connexions légitimes |
| # Allow conntrack |
| $IPTABLES -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT |
| |
| # If QOS is activate # |
| if [ $QOS = on ] && [ -e /usr/local/etc/alcasar-iptables-qos.sh ]; then |