Skip to content

ipilcher/openwrt-iptables

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
init.d
init.d
 
 
sysconfig
sysconfig
 
 
README.md
README.md
 
 

Repository files navigation

OpenWRT-iptables

Introduction

OpenWRT-iptables is a simple iptables and ip6tables startup script for OpenWRT. It is an alternative to OpenWRT's default fw3 firewall management tool.

Installation

  1. Copy init.d/iptables to /etc/init.d/. Make sure that it is executable.

  2. Symlink /etc/init.d/ip6tables to iptables.

  3. Create a directory — /etc/sysconfig.

  4. Copy sysconfig/iptables and sysconfig/ip6tables to /etc/sysconfig/.

  5. Disable the default firewall service and enable the new services.

    1. service firewall disable
    2. service iptables enable
    3. service ip6tables enable

  6. Reboot.

NOTE: The default configuration only allows inbound connections to TCP port 22 (ssh); IP forwarding and NAT are disabled. It may be necessary to customize the configuration files before enabling the new services.

Proceed with caution to avoid losing access to your WAP/router.

Additional Commands

The service script supports two additional commands:

  1. save — Saves current rules to /etc/sysconfig/iptables (or /etc/sysconfig/ip6tables).

  2. dump — Writes current rules to stdout.

About

Simple iptables startup script for OpenWRT

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages