dn42: different openvpn ports

This commit is contained in:
Jörg Thalheim 2015-11-14 21:52:52 +00:00
parent b91156798b
commit 9879f1ddaa

View File

@ -1,10 +1,12 @@
@def $dn42_ip4 = @resolve(dn42, A);
@def $dn42_ip6 = @resolve(dn42, AAAA);
domain (ip ip6) table filter chain FORWARD proto udp dport 5001:5020 daddr @ipfilter(($dn42_ip4 $dn42_ip6)) interface $bridge ACCEPT;
@def $dn42_ip6 = @resolve(ipv6.dn42.eve.higgsboson.tk, AAAA);
domain (ip ip6) table filter chain FORWARD proto udp dport 5001:5020 daddr @ipfilter(($dn42_ip4 $dn42_ip6)) ACCEPT;
domain (ip ip6) table nat chain PREROUTING interface $internet proto udp dport 5001:5020 DNAT to @ipfilter(($dn42_ip4 $dn42_ip6));
# openvpn client server
&def_service(evenet, dn42, udp, 123);
&def_service(evenet, dn42, udp, 21);
&forward_to_service(evenet, udp, 21);
&forward_to_service(evenet, udp, 123);
&def_service(evenet, dn42, tcp, 993);
&forward_to_service(evenet, tcp, 993);
&forward_to_service(evenet, udp, openvpn);
&def_service(evenet-tcp, dn42, tcp, 993);
&forward_to_service(evenet-tcp, tcp, 933);