Add rule for getting into private WAN

40_customfirewall

@@ -10,6 +10,15 @@ test -f /etc/default/customfirewall || { exit 0; }
 source /etc/default/customfirewall
 
 
+function get_destination_ips() {
+    {
+        for rule_def in $FORWARDS ; do
+            IFS=, read -r ip proto port destination <<< "$rule_def"
+            echo $destination
+        done
+    } | sort | uniq
+}
+
 function start() {
     log_progress_msg $NAME
 
@@ -25,12 +34,20 @@ function start() {
         IFS=, read -r ip proto port destination <<< "$rule_def"
         iptables -t nat -A customfirewall_prerouting -d $ip -p $proto --dport $port -j DNAT --to-destination $destination
     done
+
+    for ip in $(get_destination_ips) ; do
+        ip rule add to $destination lookup bonding-pwan prio 1900
+    done
 }
 
 
 function stop() {
     log_progress_msg $NAME
 
+    while ip rule | grep -qe '^1900:' ; do
+        ip rule del prio 1900
+    done
+
     for address_def in $ADDRESSES ; do
         IFS=, read -r interface ip <<< "$address_def"
         ip addr del $ip dev $interface