Mirrors/wireguard_webadmin
1
0
Fork 0
mirror of https://github.com/eduardogsilva/wireguard_webadmin.git synced 2026-01-01 06:16:16 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Remove REJECT from forward policy

Browse Source
This commit is contained in:
Eduardo Silva
2025-12-29 16:06:57 -03:00
parent a1727618dd
commit e351447ff0
1 changed files with 5 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
firewall/tools.py
View File

@@ -194,16 +194,14 @@ iptables -t filter -A WGWADM_FORWARD -m state --state RELATED,ESTABLISHED -j ACC
def generate_firewall_footer(): def generate_firewall_footer():
firewall_settings, firewall_settings_created = FirewallSettings.objects.get_or_create(name='global') firewall_settings, firewall_settings_created = FirewallSettings.objects.get_or_create(name='global')
deny_policy = 'REJECT' if firewall_settings.default_forward_policy == 'reject':
if firewall_settings.default_forward_policy == 'drop': firewall_settings.default_forward_policy = 'drop'
deny_policy = 'DROP' firewall_settings.save()
deny_policy = 'DROP'
footer = '# The following rules come from Firewall settings\n' footer = '# The following rules come from Firewall settings\n'
footer += '# Default FORWARD policy\n' footer += '# Default FORWARD policy\n'
if firewall_settings.default_forward_policy: footer += f'iptables -t filter -P FORWARD {firewall_settings.default_forward_policy.upper()}\n'
footer += f'iptables -t filter -P FORWARD {firewall_settings.default_forward_policy.upper()}\n'
else:
footer += f'iptables -t filter -P FORWARD DROP\n'
footer += '# Same instance Peer to Peer traffic\n' footer += '# Same instance Peer to Peer traffic\n'
for wireguard_instance in WireGuardInstance.objects.all().order_by('instance_id'): for wireguard_instance in WireGuardInstance.objects.all().order_by('instance_id'):