open-source-mirrors
/
arch-qbittorrentvpn
mirror of https://github.com/binhex/arch-qbittorrentvpn
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

allow udp for asdditional_ports

Browse Source
pull/94/head
binhex 3 years ago
parent f5b4776c79
commit 08f26c8792
1 changed files with 17 additions and 6 deletions
Show Stats Download Patch File Download Diff File

23
run/root/iptable.sh
Unescape View File

@ -38,6 +38,9 @@ IFS=',' read -ra vpn_remote_endpoint_protocol_list <<< "tcp,udp"
# split comma separated string into list from ADDITIONAL_PORTS env variable # split comma separated string into list from ADDITIONAL_PORTS env variable
IFS=',' read -ra additional_port_list <<< "${ADDITIONAL_PORTS}" IFS=',' read -ra additional_port_list <<< "${ADDITIONAL_PORTS}"
# split comma separated string into array for tcp and udp protocols (both required)
IFS=',' read -ra additional_port_protocol_list <<< "tcp,udp"
# ip route # ip route
### ###
@ -122,9 +125,13 @@ if [[ ! -z "${ADDITIONAL_PORTS}" ]]; then
echo "[info] Adding additional incoming port ${additional_port_item} for ${docker_interface}" echo "[info] Adding additional incoming port ${additional_port_item} for ${docker_interface}"
# accept input to additional port for "${docker_interface}" for additional_port_protocol_item in "${additional_port_protocol_list[@]}"; do
iptables -A INPUT -i "${docker_interface}" -p tcp --dport "${additional_port_item}" -j ACCEPT
iptables -A INPUT -i "${docker_interface}" -p tcp --sport "${additional_port_item}" -j ACCEPT # accept input to additional port for "${docker_interface}"
iptables -A INPUT -i "${docker_interface}" -p "${additional_port_protocol_item}" --dport "${additional_port_item}" -j ACCEPT
iptables -A INPUT -i "${docker_interface}" -p "${additional_port_protocol_item}" --sport "${additional_port_item}" -j ACCEPT
done
done done
@ -216,9 +223,13 @@ if [[ ! -z "${ADDITIONAL_PORTS}" ]]; then
echo "[info] Adding additional outgoing port ${additional_port_item} for ${docker_interface}" echo "[info] Adding additional outgoing port ${additional_port_item} for ${docker_interface}"
# accept output to additional port for lan interface for additional_port_protocol_item in "${additional_port_protocol_list[@]}"; do
iptables -A OUTPUT -o "${docker_interface}" -p tcp --dport "${additional_port_item}" -j ACCEPT
iptables -A OUTPUT -o "${docker_interface}" -p tcp --sport "${additional_port_item}" -j ACCEPT # accept output to additional port for lan interface
iptables -A OUTPUT -o "${docker_interface}" -p "${additional_port_protocol_item}" --dport "${additional_port_item}" -j ACCEPT
iptables -A OUTPUT -o "${docker_interface}" -p "${additional_port_protocol_item}" --sport "${additional_port_item}" -j ACCEPT
done
done done

Write Preview
Loading…
Cancel
Save