Home Explore Help
Register Sign In
wareck
/
luci
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
luci
/
contrib
/
package
/
freifunk-firewall
/
files
/
etc
/
firewall.freifunk

firewall.freifunk 1.2 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940 
  1. #!/bin/sh
    2. 

  2. # Freifunk Firewall addons
    3. 

  3. 

  4. . /lib/functions.sh
    5. 

  5. 

  6. #
    7. 

  7. # Apply advanced settings
    8. 

  8. #
    9. 

  9. apply_advanced() {
    10. 

  10. 	local tcp_ecn
    11. 

  11. 	local tcp_window_scaling
    12. 

  12. 	local accept_redirects
    13. 

  13. 	local accept_source_route
    14. 

  14. 

  15. 	config_get_bool tcp_ecn $1 tcp_ecn 1
    16. 

  16. 	config_get_bool tcp_window_scaling $1 tcp_window_scaling 1
    17. 

  17. 	config_get_bool accept_redirects $1 accept_redirects 0
    18. 

  18. 	config_get_bool accept_source_route $1 accept_source_route 0
    19. 

  19. 

  20. 	logger -t firewall.freifunk "tcp_ecn is $tcp_ecn"
    21. 

  21. 	logger -t firewall.freifunk "tcp_window_scaling is $tcp_window_scaling"
    22. 

  22. 	logger -t firewall.freifunk "accept_redirects is $accept_redirects"
    23. 

  23. 	logger -t firewall.freifunk "accept_source_route is $accept_source_route"
    24. 

  24. 

  25. 	sysctl -w net.ipv4.tcp_ecn=$tcp_ecn >/dev/null
    26. 

  26. 	sysctl -w net.ipv4.tcp_window_scaling=$tcp_window_scaling >/dev/null
    27. 

  27. 

  28. 	for f in /proc/sys/net/ipv4/conf/*/accept_redirects; do
    29. 

  29. 		echo $accept_redirects > $f
    30. 

  30. 	done
    31. 

  31. 

  32. 	for f in /proc/sys/net/ipv4/conf/*/accept_source_route; do
    33. 

  33. 		echo $accept_source_route > $f
    34. 

  34. 	done
    35. 

  35. }
    36. 

  36. 

  37. config_foreach apply_advanced advanced
    38. 

  38. 

  39. [ -x /etc/init.d/freifunk-p2pblock ] && /etc/init.d/freifunk-p2pblock enabled && \
    40. 

  40. 	( sleep 3; /etc/init.d/freifunk-p2pblock restart )&
    41.