smeserver-coova-chilli/contribs10/smeserver-coova-chilli-0.3-MasqUpdate.patch

diff -up smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input.MasqUpdate smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input
--- smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input.MasqUpdate    2008-09-02 07:28:02.000000000 -0400
+++ smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input       2016-05-26 04:48:22.919000000 -0400
@@ -8,7 +8,7 @@ inFromChilli()\{
     /sbin/iptables -A IN_FROM_CHILLI -j state_chk
     # DHCP requests are allowed
     /sbin/iptables -A IN_FROM_CHILLI -p udp --dport 67:68 --sport 67:68 -s 0.0.0.0 -d 255.255.255.255 -j ACCEPT
-    /sbin/iptables -A IN_FROM_CHILLI -s ! $net -j denylog
+    /sbin/iptables -A IN_FROM_CHILLI ! -s $net -j denylog
     # Allow wireless clients to ping the server
     /sbin/iptables -A IN_FROM_CHILLI -p icmp --icmp-type echo-request -j ACCEPT
     # Mandatory services for chilli (https, coova-chill)
diff -up smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom.MasqUpdate smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom
--- smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom.MasqUpdate      2016-05-13 06:37:39.000000000 -0400
+++ smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom 2016-05-26 04:49:14.387000000 -0400
@@ -6,8 +6,8 @@ $OUT .=<<"HERE";
 forwardFromChilli()\{
     /sbin/iptables -N FORWARD_FROM_CHILLI
     /sbin/iptables -A FORWARD_FROM_CHILLI -j state_chk
-    /sbin/iptables -A FORWARD_FROM_CHILLI -s ! $net -j denylog
-    /sbin/iptables -A FORWARD_FROM_CHILLI -o ! \$OUTERIF -j denylog
+    /sbin/iptables -A FORWARD_FROM_CHILLI ! -s $net -j denylog
+    /sbin/iptables -A FORWARD_FROM_CHILLI ! -o \$OUTERIF -j denylog
     /sbin/iptables -A FORWARD_FROM_CHILLI -p icmp --icmp-type echo-request -j ACCEPT
     # Allow http for un-authenticated clients so uamallowed works
     # Https need to be allowed in AllowedOutgoing
1	brianr	1.1	diff -up smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input.MasqUpdate smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input
2			--- smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input.MasqUpdate 2008-09-02 07:28:02.000000000 -0400
3			+++ smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input 2016-05-26 04:48:22.919000000 -0400
4			@@ -8,7 +8,7 @@ inFromChilli()\{
5			/sbin/iptables -A IN_FROM_CHILLI -j state_chk
6			# DHCP requests are allowed
7			/sbin/iptables -A IN_FROM_CHILLI -p udp --dport 67:68 --sport 67:68 -s 0.0.0.0 -d 255.255.255.255 -j ACCEPT
8			- /sbin/iptables -A IN_FROM_CHILLI -s ! $net -j denylog
9			+ /sbin/iptables -A IN_FROM_CHILLI ! -s $net -j denylog
10			# Allow wireless clients to ping the server
11			/sbin/iptables -A IN_FROM_CHILLI -p icmp --icmp-type echo-request -j ACCEPT
12			# Mandatory services for chilli (https, coova-chill)
13			diff -up smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom.MasqUpdate smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom
14			--- smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom.MasqUpdate 2016-05-13 06:37:39.000000000 -0400
15			+++ smeserver-coova-chilli-0.3/root/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom 2016-05-26 04:49:14.387000000 -0400
16			@@ -6,8 +6,8 @@ $OUT .=<<"HERE";
17			forwardFromChilli()\{
18			/sbin/iptables -N FORWARD_FROM_CHILLI
19			/sbin/iptables -A FORWARD_FROM_CHILLI -j state_chk
20			- /sbin/iptables -A FORWARD_FROM_CHILLI -s ! $net -j denylog
21			- /sbin/iptables -A FORWARD_FROM_CHILLI -o ! \$OUTERIF -j denylog
22			+ /sbin/iptables -A FORWARD_FROM_CHILLI ! -s $net -j denylog
23			+ /sbin/iptables -A FORWARD_FROM_CHILLI ! -o \$OUTERIF -j denylog
24			/sbin/iptables -A FORWARD_FROM_CHILLI -p icmp --icmp-type echo-request -j ACCEPT
25			# Allow http for un-authenticated clients so uamallowed works
26			# Https need to be allowed in AllowedOutgoing