miniupnp.tuxfamily.org Forum Index miniupnp.tuxfamily.org
The forum about miniupnp and libnatpmp
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

Adding ACCEPT rule

 
Post new topic   Reply to topic    miniupnp.tuxfamily.org Forum Index -> miniupnpd Compilation/Installation
View previous topic :: View next topic  
Author Message
troykelly



Joined: 21 Jan 2012
Posts: 2
Location: Australia

PostPosted: Sat Jan 21, 2012 12:54 pm    Post subject: Adding ACCEPT rule Reply with quote

I'm trying to work out how I can get the daemon to add an ACCEPT rule at the same time it is creating the forwarding rules.

Our firewalls are like most and default deny incoming traffic from untrusted sources. So, when granting a UPnP port forward, we also need to "open" a hole in the firewall and allow the packet in.
Back to top
View user's profile Send private message
miniupnp
Site Admin


Joined: 14 Apr 2007
Posts: 1481

PostPosted: Sun Jan 22, 2012 11:15 pm    Post subject: Re: Adding ACCEPT rule Reply with quote

troykelly wrote:
I'm trying to work out how I can get the daemon to add an ACCEPT rule at the same time it is creating the forwarding rules.

Our firewalls are like most and default deny incoming traffic from untrusted sources. So, when granting a UPnP port forward, we also need to "open" a hole in the firewall and allow the packet in.

I guess you are using miniupnpd under Linux/netfilter...
miniupnpd already add ACCEPT rule at the same time as the network address translation rule.
_________________
Main miniUPnP author.
http://miniupnp.tuxfamily.org/
Back to top
View user's profile Send private message Visit poster's website
troykelly



Joined: 21 Jan 2012
Posts: 2
Location: Australia

PostPosted: Sun Jan 22, 2012 11:42 pm    Post subject: Reply with quote

Thank-you.

Yes - It's on a DD-WRT router, iptables v1.3.7

I can't see the ACCEPT rule being created, which table does it get created in?

We don't use the default ruleset created by the router, a custom one is built. So I will need to add it to a chain I guess
Back to top
View user's profile Send private message
miniupnp
Site Admin


Joined: 14 Apr 2007
Posts: 1481

PostPosted: Mon Jan 23, 2012 10:11 pm    Post subject: Reply with quote

troykelly wrote:
Thank-you.

Yes - It's on a DD-WRT router, iptables v1.3.7

I can't see the ACCEPT rule being created, which table does it get created in?

We don't use the default ruleset created by the router, a custom one is built. So I will need to add it to a chain I guess

see the table "filter", chain MINIUPNPD :
Code:
iptables -v -n -t filter -L MINIUPNPD

_________________
Main miniUPnP author.
http://miniupnp.tuxfamily.org/
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    miniupnp.tuxfamily.org Forum Index -> miniupnpd Compilation/Installation All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group
Protected by Anti-Spam ACP
© 2007 Thomas Bernard, author of MiniUPNP.