mirror of
https://github.com/breeze303/nss-packages.git
synced 2025-12-16 16:57:29 +00:00
8d54d726c2
To keep fork as closely synced with upstream, move NSS packages back into repository. Not sure why they were moved out from my original fork. * nss-firmware * qca-nss-crypto * qca-nss-cfi Removed the following: * mhz (already available in packages repo) * qrtr (unecessary, and has been broken for years) Also moved packages out of `qca` and back into root directory.
15 lines
686 B
Bash
15 lines
686 B
Bash
#!/bin/sh
|
|
|
|
if grep -q "fw3" /etc/init.d/firewall; then
|
|
iptables -nvL | grep -q "Chain RATE-LIMIT" && iptables -F RATE-LIMIT
|
|
iptables -nvL | grep -q "Chain RATE-LIMIT" || iptables -N RATE-LIMIT
|
|
iptables -A RATE-LIMIT --match limit --limit 1000/sec --limit-burst 1000 -j RETURN
|
|
iptables -A RATE-LIMIT -j DROP
|
|
iptables -I zone_wan_forward 5 --match conntrack --ctstate NEW -j RATE-LIMIT
|
|
elif grep -q "fw4" /etc/init.d/firewall; then
|
|
nft add chain inet fw4 RATE-LIMIT
|
|
nft add rule inet fw4 RATE-LIMIT limit rate 1000/second burst 1000 packets counter return
|
|
nft add rule inet fw4 RATE-LIMIT counter drop
|
|
nft insert rule inet fw4 forward_wan ct state new counter jump RATE-LIMIT
|
|
fi
|