Check for iptables-persistent and copy new rules

2025-02-07 07:49:25 +03:00 · 2016-01-22 11:14:58 -06:00 · 2016-01-22 11:14:58 -06:00 · f8b91f65a4
commit f8b91f65a4
parent ab98a9e6b0
1 changed files with 10 additions and 0 deletions
--- a/vpnsetup.sh
+++ b/vpnsetup.sh
@ -327,6 +327,11 @@ iptables -t nat -I POSTROUTING -s 192.168.42.0/24 -o eth+ -j SNAT --to-source "$
 echo "# Modified by hwdsl2 VPN script" > /etc/iptables.rules
 /sbin/iptables-save >> /etc/iptables.rules
 fi
+# Update rules for iptables-persistent
+if [ -f /etc/iptables/rules.v4 ]; then
+/bin/cp -f /etc/iptables/rules.v4 "/etc/iptables/rules.v4.old-${SYS_DT}"
+/bin/cp -f /etc/iptables.rules /etc/iptables/rules.v4
+fi
 fi

 # Create basic IP6Tables (IPv6) rules
@ -346,6 +351,11 @@ cat > /etc/ip6tables.rules <<EOF
 -A INPUT -j DROP
 COMMIT
 EOF
+# Update rules (IPv6) for iptables-persistent
+if [ -f /etc/iptables/rules.v6 ]; then
+/bin/cp -f /etc/iptables/rules.v6 "/etc/iptables/rules.v6.old-${SYS_DT}"
+/bin/cp -f /etc/ip6tables.rules /etc/iptables/rules.v6
+fi
 fi

 # Load IPTables rules at system boot