Home Explore Help
Sign In
OpenWrt
/
openwrt
mirror of https://github.com/openwrt/openwrt.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: f5bdb5432f
Branches Tags
openwrt
/
package
/
iptables
/
files
/
firewall.config

firewall.config 956 B
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748 
  1. # Copyright (C) 2006 OpenWrt.org
    2. 

  2. 

  3. # RULE SYNTAX:
    4. 

  4. #
    5. 

  5. # forward:<match>:<target>[:<port>]
    6. 

  6. # 	- forwards all packets matched by <match> to <target>,
    7. 

  7. # 	  optionally changing the port to <port>
    8. 

  8. #
    9. 

  9. # accept:<match>
    10. 

  10. # 	- accepts all traffic matched by <match>
    11. 

  11. #
    12. 

  12. # drop:<match>
    13. 

  13. #	- drops all traffic matched by <match>
    14. 

  14. #
    15. 

  15. #
    16. 

  16. # MATCHING OPTIONS:
    17. 

  17. #
    18. 

  18. # src=<ip>
    19. 

  19. # 	- match the source ip <ip>
    20. 

  20. #
    21. 

  21. # dest=<ip>
    22. 

  22. # 	- match the destination ip <ip>
    23. 

  23. #
    24. 

  24. # proto=<proto>
    25. 

  25. # 	- match the protocol by name or number
    26. 

  26. #
    27. 

  27. # sport=<port(s)>
    28. 

  28. # 	- match the source port(s), see below for syntax
    29. 

  29. #
    30. 

  30. # dport=<port(s)>
    31. 

  31. # 	- match the destination port(s), see below for syntax
    32. 

  32. #
    33. 

  33. #
    34. 

  34. #
    35. 

  35. # PORT SYNTAX:
    36. 

  36. #
    37. 

  37. # You can enter an arbitrary list of ports and port ranges in the following format:
    38. 

  38. #   - 22,53,993,1000-1024 
    39. 

  39. #
    40. 

  40. # If you don't set the protocol to tcp or udp, it will apply to both
    41. 

  41. #
    42. 

  42. #
    43. 

  43. #
    44. 

  44. # EXAMPLES:
    45. 

  45. #
    46. 

  46. # drop:dport=22 src=1.3.3.7
    47. 

  47. # accept:proto=tcp dport=22
    48. 

  48. # forward:dport=60168:192.168.1.2:60169
    49.