Hello,
Am 04/07/2015 12:36 AM, schrieb Jan Lühr: > Hello folks, > > debugging the OpenWRT-Firewall I'm somewhat puzzled by the set of rules. > Pastie: https://gist.github.com/anonymous/9aa3d0a972b36fc1c966 > > Can you help me here? > > a) Although the firewall is stateful, there are a couple of rules that > seem to match to outgoing / forwared connections (lines 60, 61, 62, > 63,64, 79-88). Why are these packets whitelisted explicitly? For > instance: An valid, incoming echo reply must refer to an outgoing or > forward echo request. > > b) For "Allow-ICMPv6-Forward" (line 75): Why is there no IPv4 analogon > for this rule? Oops .. missed one: c) How to I assign a temporary interface (ie OpenVPN-tun) to a firewall zone? Thanks, Jan _______________________________________________ openwrt-users mailing list [email protected] https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
