From e1b4d59b4f10466e95c0afc991cdf38ccee9bab6 Mon Sep 17 00:00:00 2001
From: Gardouille <gardouille@gmail.com>
Date: Wed, 16 Sep 2015 17:56:59 +0200
Subject: [PATCH] firewall: Insert VPN rules at the beginning.

---
 firewall | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/firewall b/firewall
index 7136298..24fd304 100755
--- a/firewall
+++ b/firewall
@@ -302,8 +302,8 @@ fw_stop() {
 # VPN
 fw_vpn() {
   # Allow all traffic throught VPN
-  $IPT -A INPUT -j ACCEPT -p all -i "${ILAN}" -m state --state NEW,RELATED,ESTABLISHED -m comment --comment "VPN in"
-  $IPT -A OUTPUT -j ACCEPT -p all -o "${ILAN}" -m state --state NEW,RELATED,ESTABLISHED,UNTRACKED -m comment --comment "VPN out"
+  $IPT -I INPUT -j ACCEPT -p all -i "${ILAN}" -m state --state NEW,RELATED,ESTABLISHED -m comment --comment "VPN in"
+  $IPT -I OUTPUT -j ACCEPT -p all -o "${ILAN}" -m state --state NEW,RELATED,ESTABLISHED,UNTRACKED -m comment --comment "VPN out"
 }
 
 # **********************************************************************************************