Skip to content

Commit

Permalink
chore: fixes and improvements
Browse files Browse the repository at this point in the history
  • Loading branch information
@muink
muink committed Nov 12, 2024
1 parent 4f054f1 commit b3454d2
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion luci-app-fchomo/root/etc/fchomo/scripts/firewall_post.ut
View file
Original file line number Diff line number Diff line change
Expand Up @@ -154,6 +154,8 @@ chain {{ inchain }} {
{%- function render_acl_dst(inchain, outchain): %}
chain {{ inchain }} {
meta mark {{ self_mark }} counter return
fib daddr type { local } counter return
ct direction reply counter return

ip daddr @inet4_local_addr counter return
{% if (global_ipv6 === '1'): %}
Expand Down Expand Up @@ -423,7 +425,7 @@ table inet fchomo {
{{ render_acl_dport('tproxy_acl_dport_reroute', 'tproxy_mark', 'udp') }}
chain tproxy_mark {
{#- DNS hijack #}
udp dport 53 counter accept comment "!{{ cfgname }}: DNS hijack (bypass rerouter)"
udp dport 53 counter accept comment "!{{ cfgname }}: DNS hijack (bypass router udp)"

meta l4proto udp meta mark set {{ tproxy_mark }} counter accept
}
Expand Down

0 comments on commit b3454d2

Please sign in to comment.