X-Git-Url: https://git.distorted.org.uk/~mdw/firewall/blobdiff_plain/8506ff83e7ea0db6fc8f7d56d702730d75f38fb6..32110b35da9d3ed1ce9668d3f17c28100a878687:/radius.m4

diff --git a/radius.m4 b/radius.m4
index 2d5f8aa..b8481bb 100644
--- a/radius.m4
+++ b/radius.m4
@@ -88,7 +88,10 @@ for p in ftp sip h323; do
   run modprobe nf_nat_$p
 done
 
-## Forbid anything complicated to the NAT address.
+## Forbid anything complicated to the NAT address.  Be sure to allow ident,
+## though.
+run iptables -A INPUT -d 62.49.204.158 -p tcp -j ACCEPT \
+	-m multiport --destination-ports=113
 run iptables -A INPUT -d 62.49.204.158 ! -p icmp -j REJECT
 
 m4_divert(-1)