unetd: add firewall input rule for global port

Ensure that peers can be exchanged over any interface

Signed-off-by: Felix Fietkau <nbd@nbd.name>

diff --git a/package/network/services/unetd/files/unetd.init b/package/network/services/unetd/files/unetd.init
index c1124821ee8fa15c0116c3b2ca1bc7de899d7a04..7c980e3d0d541b93e81f9367e6da411f1210a8be 100644 (file)
--- a/package/network/services/unetd/files/unetd.init
+++ b/package/network/services/unetd/files/unetd.init
@@ -13,5 +13,20 @@ start_service() {
        procd_set_param command "$PROG" -h /var/run/unetd/hosts -u /var/run/unetd/socket
        procd_set_param respawn
        procd_set_param limits core="unlimited"
+
+       procd_open_data
+       json_add_array firewall
+
+       json_add_object ""
+       json_add_string type rule
+       json_add_string proto udp
+       json_add_string src "*"
+       json_add_int dest_port 51819
+       json_add_string target ACCEPT
+       json_close_object
+
+       json_close_array
+       procd_close_data
+
        procd_close_instance
 }