--- smeserver-dansguardian-2.9/root/etc/e-smith/templates/etc/rc.d/init.d/masq/90local_chk40networks.block8080	2008-05-30 18:07:28.000000000 +1000
+++ smeserver-dansguardian-2.9/root/etc/e-smith/templates/etc/rc.d/init.d/masq/90local_chk40networks	2008-05-30 18:12:04.000000000 +1000
@@ -1,15 +1,17 @@
 {
-	return "" unless ( ($dansguardian{portblocking} || "no") eq 'yes');
+    return "" unless ( ($dansguardian{portblocking} || "no") eq 'yes');
 
     my $locals = "@locals";
     if (@locals)
     {
-    	$OUT .=<<"EOF";
-        for network in $locals
-        do
-            /sbin/iptables -A \$NEW_local_chk -s \$network -p tcp --destination-port 3128 -j DROP
-            /sbin/iptables -A \$NEW_local_chk -d \$network -p tcp --destination-port 3128 -j DROP
-        done
+    $OUT .=<<"EOF";
+    for network in $locals
+    do
+        /sbin/iptables -A \$NEW_local_chk -d $LocalIP/$LocalNetmask -j ACCEPT
+        /sbin/iptables -A \$NEW_local_chk -s \$network -p tcp --destination-port $squid{TransparentPort} -j DROP
+        /sbin/iptables -A \$NEW_local_chk -s \$network -p tcp --destination-port $squid{TCPPort} -j DROP
+        /sbin/iptables -A \$NEW_local_chk -d \$network -p tcp --destination-port $squid{TCPPort} -j DROP
+    done
 EOF
     }
 }