diff options
| author | sarthurdev <965089+sarthurdev@users.noreply.github.com> | 2022-08-30 17:07:50 +0200 |
|---|---|---|
| committer | sarthurdev <965089+sarthurdev@users.noreply.github.com> | 2022-09-13 15:03:06 +0200 |
| commit | 758a726e323672285c197bcb571f43b0b0ece462 (patch) | |
| tree | 62c2e12b5f093616a54ba7116fabf5111eb0448b | |
| parent | e78e2c399fa7daf47fab2a463e798b497943b3b3 (diff) | |
| download | vyatta-cfg-758a726e323672285c197bcb571f43b0b0ece462.tar.gz vyatta-cfg-758a726e323672285c197bcb571f43b0b0ece462.zip | |
firewall: T2199: Use data file instead of conf script
| -rwxr-xr-x | scripts/init/vyos-router | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/scripts/init/vyos-router b/scripts/init/vyos-router index 2785132..ec7def5 100755 --- a/scripts/init/vyos-router +++ b/scripts/init/vyos-router @@ -299,10 +299,15 @@ start () # reset and clean config files security_reset || log_failure_msg "security reset failed" + # Init firewall + nfct helper add rpc inet tcp + nfct helper add rpc inet udp + nfct helper add tns inet tcp + nft -f /usr/share/vyos/vyos-firewall-init.conf || log_failure_msg "could not initiate firewall rules" + # As VyOS does not execute commands that are not present in the CLI we call # the script by hand to have a single source for the login banner and MOTD ${vyos_conf_scripts_dir}/system_console.py || log_failure_msg "could not reset serial console" - ${vyos_conf_scripts_dir}/firewall.py || log_failure_msg "could not initiate firewall rules" ${vyos_conf_scripts_dir}/system-login-banner.py || log_failure_msg "could not reset motd and issue files" ${vyos_conf_scripts_dir}/system-option.py || log_failure_msg "could not reset system option files" ${vyos_conf_scripts_dir}/conntrack.py || log_failure_msg "could not reset conntrack subsystem" |