OpenWRT There are a few ways to edit iptables in OpenWRT. Direct use of iptables OpenWRT will run the contents of /etc/firewall.user at startup. It is a shell script, so it'll look something like this: root@OpenWrt:/etc# cat firewall.user # This file is interpreted as shell script.

# Put your custom iptables rules here, they will # be executed with each firewall (re-)start. Iptables -A PREROUTING -t nat -i eth0 -p tcp -dport 22 -j DNAT -to 10.1.1.1:2222 iptables -A FORWARD -p tcp -d 10.1.1.1 -dport 2222 -j ACCEPT Testing /etc/firewall.user After editing the /etc/firewall.user file, you will probably want to test it.

This is because you may be able to see any errors if you execute the script at start up. To test the script:. First, remove any rules affected by the script. A iptables -F will work, but may remove rules you don't need to test. Next, run bash /etc/firewall.user. You want to see if there are any errors in the script.

Coverall Crew Firewall Startup Script For Mac

If you get any messages back, you probably have a typo. Next, run iptables -L and ensure the rules you wanted to be added were added correctly. Finally, restart the device.

Coverallcrew Firewall Start-up Script For Mac Download

At this point you should expect the rules to be added just as they were last time. Iptables-save and iptables-restore OpenWRT (along with other distros), have a iptables-save command. By running iptables-save myrules, you will have a file that contains all that is necessary to restore your iptables rules.