From f5998e1ffc6af3d239ea46dea95a4f70db865c74 Mon Sep 17 00:00:00 2001
From: Richard Fuchs <rfuchs@sipwise.com>
Date: Mon, 19 Sep 2011 18:42:31 +0000
Subject: [PATCH] restrict mediaproxy iptables rule to udp only

---
 debian/ngcp-mediaproxy-ng-daemon.init | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/debian/ngcp-mediaproxy-ng-daemon.init b/debian/ngcp-mediaproxy-ng-daemon.init
index 415512d1a..2fee41624 100755
--- a/debian/ngcp-mediaproxy-ng-daemon.init
+++ b/debian/ngcp-mediaproxy-ng-daemon.init
@@ -68,8 +68,9 @@ case "$1" in
         set +e
 	echo "del $TABLE" > /proc/mediaproxy/control 2>/dev/null
 	iptables -D INPUT -j MEDIAPROXY --id $TABLE 2>/dev/null
+	iptables -D INPUT -p udp -j MEDIAPROXY --id $TABLE 2>/dev/null
 	set -e
-	iptables -I INPUT -j MEDIAPROXY --id $TABLE
+	iptables -I INPUT -p udp -j MEDIAPROXY --id $TABLE
 	start-stop-daemon --start --quiet --pidfile $PIDFILE \
 		--exec $DAEMON -- $OPTIONS || echo -n " already running"
 	log_end_msg $?
@@ -84,6 +85,7 @@ case "$1" in
 	set +e
 	echo "del $TABLE" > /proc/mediaproxy/control 2>/dev/null
 	iptables -D INPUT -j MEDIAPROXY --id $TABLE 2>/dev/null
+	iptables -D INPUT -p udp -j MEDIAPROXY --id $TABLE 2>/dev/null
 	rmmod ipt_MEDIAPROXY 2>/dev/null
 	set -e
 	rm -f $PIDFILE
@@ -104,10 +106,11 @@ case "$1" in
 		echo "del $TABLE" > /proc/mediaproxy/control 2>/dev/null
 	fi
 	iptables -D INPUT -j MEDIAPROXY --id $TABLE 2>/dev/null
+	iptables -D INPUT -p udp -j MEDIAPROXY --id $TABLE 2>/dev/null
 	rmmod ipt_MEDIAPROXY 2>/dev/null
 	set -e
 	modprobe ipt_MEDIAPROXY
-	iptables -I INPUT -j MEDIAPROXY --id $TABLE
+	iptables -I INPUT -p udp -j MEDIAPROXY --id $TABLE
 	start-stop-daemon --start --quiet --pidfile \
 		$PIDFILE --exec $DAEMON  -- $OPTIONS
 	log_end_msg $?