From fcae1e266f664fbcd1bc7907e1139a8134edd00b Mon Sep 17 00:00:00 2001 From: bbruns Date: Sun, 6 Apr 2014 17:18:30 +0000 Subject: [PATCH] iptables is very particular about the order of options with multiport --- lib/iptables.inc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lib/iptables.inc b/lib/iptables.inc index 87c6216..9bc2efc 100644 --- a/lib/iptables.inc +++ b/lib/iptables.inc @@ -475,7 +475,7 @@ function enable_services { [[ ${address} == "-" ]] && address="" [[ ${srcaddress} == "-" ]] && srcaddress="" - ${VER_IPTABLES} -A ${InFilter} ${service} ${protocol} ${interface} ${address} ${srcaddress} ${conntrack_state} -j ACCEPT + ${VER_IPTABLES} -A ${InFilter} ${protocol} ${service} ${interface} ${address} ${srcaddress} ${conntrack_state} -j ACCEPT done < "${FWCONFIGDIR}/ipv${IPVER}/services.conf" ${debug} ${DebugColor} "${FUNCNAME}:${DEFAULT_COLOR} done"