Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Last revision Both sides next revision | ||
project:omnia:firewall [2017/04/04 20:18] embargo [UCI forwarding] example config script |
project:omnia:firewall [2017/04/04 20:37] embargo [UCI forwarding] delete rule |
||
---|---|---|---|
Line 2: | Line 2: | ||
==== UCI forwarding ==== | ==== UCI forwarding ==== | ||
+ | === Create forwarding rule === | ||
<code> | <code> | ||
uci add firewall redirect | uci add firewall redirect | ||
- | uci set firewall.@redirect[].dest=dmz_pub | + | #cfg3b3837 |
- | uci set firewall.@redirect[].dest_ip=172.16.10.20 | + | uci set firewall.@redirect[-1].dest=dmz_pub |
- | uci set firewall.@redirect[].dest_port=22 | + | uci set firewall.@redirect[-1].dest_ip=172.16.10.20 |
- | uci set firewall.@redirect[].enabled=1 | + | uci set firewall.@redirect[-1].dest_port=22 |
- | uci set firewall.@redirect[].name=test1 | + | uci set firewall.@redirect[-1].enabled=1 |
- | uci set firewall.@redirect[].proto=tcp | + | uci set firewall.@redirect[-1].name=test1 |
- | uci set firewall.@redirect[].src=wan | + | uci set firewall.@redirect[-1].proto=tcp |
- | uci set firewall.@redirect[].src_dport=2222 | + | uci set firewall.@redirect[-1].src=wan |
- | uci set firewall.@redirect[].target=DNAT | + | uci set firewall.@redirect[-1].src_dport=2222 |
+ | uci set firewall.@redirect[-1].target=DNAT | ||
+ | uci commit firewall | ||
+ | |||
+ | uci show firewall.@redirect[0] | ||
+ | firewall.cfg3b3837=redirect | ||
+ | firewall.cfg3b3837.dest='dmz_pub' | ||
+ | firewall.cfg3b3837.dest_port='22' | ||
+ | firewall.cfg3b3837.name='test1' | ||
+ | firewall.cfg3b3837.proto='tcp' | ||
+ | firewall.cfg3b3837.src='wan' | ||
+ | firewall.cfg3b3837.target='DNAT' | ||
+ | firewall.cfg3b3837.dest_ip='172.16.10.21' | ||
+ | firewall.cfg3b3837.src_dport='2223' | ||
+ | </code> | ||
+ | === Delete forwarding rule === | ||
+ | <code> | ||
+ | uci delete firewall.cfg3b3837 | ||
uci commit firewall | uci commit firewall | ||
</code> | </code> |