Try fix traceroute iptables config.

author: Andreas Fankhauser hiddenalpha.ch 2024-04-12 23:22:36 +0200
committer: Andreas Fankhauser hiddenalpha.ch 2024-04-12 23:22:36 +0200
commit: ad0e8cd378a0d335f14b40d045dc129b30b9bedc (patch)
tree: cc482ad1fdf4dd9b5d5f0d25219ffd3218f0fb50
parent: 45e8ba4c5dd6592104a35a7477d20e927d9b76c3 (diff)
download: dotfiles-ad0e8cd378a0d335f14b40d045dc129b30b9bedc.zip
dotfiles-ad0e8cd378a0d335f14b40d045dc129b30b9bedc.tar.gz
1 files changed, 5 insertions, 1 deletions
diff --git a/src/firewall/src-default b/src/firewall/src-default
index 027c4c0..a8d6d05 100644
--- a/src/firewall/src-default
+++ b/src/firewall/src-default
@@ -37,10 +37,14 @@
 #-A INPUT  -p icmp --icmp-type echo-request -j ACCEPT
 #-A OUTPUT -p icmp --icmp-type echo-reply   -j ACCEPT
 
-# Traceroute client
+# Traceroute client (ToBeVerified)
+#-A OUTPUT -p icmp --icmp-type 8 -j ACCEPT
+#-A INPUT  -p icmp --icmp-type 11 -j ACCEPT
 #-A OUTPUT -p udp -m udp --match multiport --dports 33434:33523 -j ACCEPT
+#-A INPUT  -p udp -m udp --match multiport --sports 33434:33523 -j ACCEPT
 
 # Traceroute server
+#-A INPUT -p icmp --icmp-type 8 -j ACCEPT
 #-A INPUT -p udp --dport 33434:33523 -j REJECT
 
 # NTP client
author	Andreas Fankhauser hiddenalpha.ch	2024-04-12 23:22:36 +0200
committer	Andreas Fankhauser hiddenalpha.ch	2024-04-12 23:22:36 +0200
commit	ad0e8cd378a0d335f14b40d045dc129b30b9bedc (patch)
tree	cc482ad1fdf4dd9b5d5f0d25219ffd3218f0fb50
parent	45e8ba4c5dd6592104a35a7477d20e927d9b76c3 (diff)
download	dotfiles-ad0e8cd378a0d335f14b40d045dc129b30b9bedc.zip dotfiles-ad0e8cd378a0d335f14b40d045dc129b30b9bedc.tar.gz