From 2fee657db2345ad5e45ebbfc2b4d1b2379220db5 Mon Sep 17 00:00:00 2001 From: LGA1150 Date: Mon, 6 Jan 2020 19:44:14 +0800 Subject: [PATCH] luci-app-vlmcsd: do not expose port to WAN --- .../root/etc/uci-defaults/luci-app-vlmcsd | 10 ---------- package/lean/vlmcsd/files/vlmcsd.init | 6 ------ 2 files changed, 16 deletions(-) diff --git a/package/lean/luci-app-vlmcsd/root/etc/uci-defaults/luci-app-vlmcsd b/package/lean/luci-app-vlmcsd/root/etc/uci-defaults/luci-app-vlmcsd index d28b2ec9f8..4820aef8b2 100755 --- a/package/lean/luci-app-vlmcsd/root/etc/uci-defaults/luci-app-vlmcsd +++ b/package/lean/luci-app-vlmcsd/root/etc/uci-defaults/luci-app-vlmcsd @@ -7,15 +7,5 @@ uci -q batch <<-EOF >/dev/null commit ucitrack EOF -uci delete firewall.kms -uci add firewall rule -uci rename firewall.@rule[-1]="kms" -uci set firewall.@rule[-1].name="kms" -uci set firewall.@rule[-1].target="ACCEPT" -uci set firewall.@rule[-1].src="wan" -uci set firewall.@rule[-1].proto="tcp" -uci set firewall.@rule[-1].dest_port="1688" -uci commit firewall - rm -f /tmp/luci-indexcache exit 0 diff --git a/package/lean/vlmcsd/files/vlmcsd.init b/package/lean/vlmcsd/files/vlmcsd.init index fe628d708a..f6e07d3a80 100755 --- a/package/lean/vlmcsd/files/vlmcsd.init +++ b/package/lean/vlmcsd/files/vlmcsd.init @@ -6,10 +6,6 @@ START=90 start(){ if [ ! -f "/tmp/vlmcsd.pid" ]; then /usr/bin/vlmcsd -i /etc/vlmcsd.ini -p /tmp/vlmcsd.pid -L 0.0.0.0:1688 - iptables -D input_rule -p tcp --dport 1688 -j ACCEPT - iptables -A input_rule -p tcp --dport 1688 -j ACCEPT - sed -i '/## luci-app-vlmcsd/d' /etc/firewall.user - echo "iptables -A input_rule -p tcp --dport 1688 -j ACCEPT ## luci-app-vlmcsd" >> /etc/firewall.user echo "KMS Server has started." else echo "KMS Server has already started." @@ -23,8 +19,6 @@ stop(){ pid=`cat /tmp/vlmcsd.pid` kill $pid rm -f /tmp/vlmcsd.pid - iptables -D input_rule -p tcp --dport 1688 -j ACCEPT - sed -i '/## luci-app-vlmcsd/d' /etc/firewall.user echo "KMS Server has stopped." fi }