allow mgmt / trusted traffic to modem0.5.1

author: HimbeerserverDE <himbeerserverde@gmail.com> 2023-08-14 09:08:04 +0200
committer: HimbeerserverDE <himbeerserverde@gmail.com> 2023-08-14 09:08:04 +0200
commit: 5effcae08b605749952fe178649b508fa33bd877 (patch)
tree: 9ef45254a4e8c95c23434261938a0c99deb695f3
parent: bd37cca1ad4cfafe5098146e53fc6b55b5081d4a (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/src/main.rs b/src/main.rs
index 1d91419..013aee3 100644
--- a/src/main.rs
+++ b/src/main.rs
@@ -204,6 +204,9 @@ fn filter() -> Result<()> {
     let allow_established = Rule::new(&forward)?.established()?.accept();
     batch.add(&allow_established, MsgType::Add);
 
+    let allow_mgmt_to_modem = Rule::new(&forward)?.iface("eth0")?.oface("eth1")?.accept();
+    batch.add(&allow_mgmt_to_modem, MsgType::Add);
+
     let allow_mgmt_to_wan = Rule::new(&forward)?.iface("eth0")?.oface("ppp0")?.accept();
     batch.add(&allow_mgmt_to_wan, MsgType::Add);
 
@@ -219,6 +222,12 @@ fn filter() -> Result<()> {
         .accept();
     batch.add(&allow_mgmt_to_wan6in4, MsgType::Add);
 
+    let allow_trusted_to_modem = Rule::new(&forward)?
+        .iface("eth0.10")?
+        .oface("eth1")?
+        .accept();
+    batch.add(&allow_trusted_to_modem, MsgType::Add);
+
     let allow_trusted_to_wan = Rule::new(&forward)?
         .iface("eth0.10")?
         .oface("ppp0")?
author	HimbeerserverDE <himbeerserverde@gmail.com>	2023-08-14 09:08:04 +0200
committer	HimbeerserverDE <himbeerserverde@gmail.com>	2023-08-14 09:08:04 +0200
commit	5effcae08b605749952fe178649b508fa33bd877 (patch)
tree	9ef45254a4e8c95c23434261938a0c99deb695f3
parent	bd37cca1ad4cfafe5098146e53fc6b55b5081d4a (diff)