From 5091f36f4caed706b471febdce54fc8491c97e19 Mon Sep 17 00:00:00 2001 From: clay_your Date: Thu, 20 Aug 2020 10:51:08 +0800 Subject: [PATCH] use -I instead of -A, to fix iptables forward or delete -A FORWARD -j REJECT --reject-with icmp-host-prohibited in iptables conf --- wg-for-game.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/wg-for-game.sh b/wg-for-game.sh index 4af2be5..6aebba2 100644 --- a/wg-for-game.sh +++ b/wg-for-game.sh @@ -97,7 +97,7 @@ wireguard_install(){ [Interface] PrivateKey = $s1 Address = 10.0.0.1/24 -PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -A FORWARD -o wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o $NIC -j MASQUERADE +PostUp = iptables -I FORWARD -i wg0 -j ACCEPT; iptables -I FORWARD -o wg0 -j ACCEPT; iptables -t nat -I POSTROUTING -o $NIC -j MASQUERADE PostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -D FORWARD -o wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o $NIC -j MASQUERADE ListenPort = 1195 DNS = 8.8.8.8