From 2742c4c4964c9dbadba41629b22563bd510a73ed Mon Sep 17 00:00:00 2001
From: lassulus <lass@aidsballs.de>
Date: Mon, 1 Jun 2015 03:10:06 +0200
Subject: base: allow icmp on all interfaces

---
 modules/lass/base.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'modules')

diff --git a/modules/lass/base.nix b/modules/lass/base.nix
index 87127fb..3a8d879 100644
--- a/modules/lass/base.nix
+++ b/modules/lass/base.nix
@@ -94,10 +94,10 @@
     extraCommands = ''
       iptables -A INPUT -j ACCEPT -m conntrack --ctstate RELATED,ESTABLISHED
       iptables -A INPUT -j ACCEPT -i lo
+      iptables -A INPUT -j ACCEPT -p icmp
 
       #iptables -N Retiolum
       iptables -A INPUT -j Retiolum -i retiolum
-      iptables -A Retiolum -j ACCEPT -p icmp
       iptables -A Retiolum -j ACCEPT -m conntrack --ctstate RELATED,ESTABLISHED
       iptables -A Retiolum -j REJECT -p tcp --reject-with tcp-reset
       iptables -A Retiolum -j REJECT -p udp --reject-with icmp-port-unreachable
-- 
cgit v1.2.3