fix default firewall script and kernel mod dependencies

2 files changed, 3 insertions, 5 deletions

diff --git a/package/iptables/Makefile b/package/iptables/Makefile
index b7f98121e..f5f2d2392 100644
--- a/package/iptables/Makefile
+++ b/package/iptables/Makefile
@@ -9,7 +9,7 @@ PKG_RELEASE:=		1
 PKG_MD5SUM:=		c67cf30e281a924def6426be0973df56
 PKG_DESCR:=		The netfilter firewalling software
 PKG_SECTION:=		net
-PKG_DEPENDS:=		kmod-ip-nf-iptables kmod-nf-conntrack kmod-nf-conntrack-ipv4 kmod-nf-nat kmod-ip-nf-target-masquerade kmod-ip-nf-target-reject kmod-ip-nf-filter
+PKG_DEPENDS:=		kmod-ip-nf-iptables kmod-nf-conntrack kmod-nf-conntrack-ipv4 kmod-nf-nat kmod-ip-nf-target-masquerade kmod-ip-nf-target-reject kmod-ip-nf-filter kmod-ip-nf-match-state kmod-netfilter-xt-target-tcpmss
 PKG_URL:=		http://www.netfilter.org
 PKG_SITES:=		http://www.netfilter.org/projects/iptables/files/ \
 			ftp://ftp.be.netfilter.org/pub/netfilter/iptables/ \
diff --git a/package/iptables/files/firewall.conf b/package/iptables/files/firewall.conf
index bc9a39c41..2c8faaa34 100644
--- a/package/iptables/files/firewall.conf
+++ b/package/iptables/files/firewall.conf
@@ -1,13 +1,11 @@
 #!/bin/sh
-
-
 echo "configure /etc/firewall.conf first."
 exit 1
 
 ### Interfaces
 WAN=ppp0
 LAN=br0
-WLAN=
+WLAN=wlan0
 
 ######################################################################
 ### Default ruleset
@@ -29,7 +27,7 @@ iptables -P FORWARD DROP
 # base case
 iptables -A INPUT -m state --state INVALID -j DROP
 iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-iptables -A INPUT -p tcp --tcp-flags SYN SYN --tcp-option \! 2 -j DROP
+iptables -A INPUT -p tcp --tcp-flags SYN SYN \! --tcp-option 2 -j DROP
 
 # custom rules
 iptables -A INPUT -j input_rule