--- /dev/null
+firewall rules, temporarily disabled until I get them working
+
+
+#### begin port forwarding rules ####
+ # each port forward needs corresponding forward in the vpn server
+config redirect
+ option name ssh
+ option src wan
+ # example of using a non-standard port
+ # and comment out the 22 port line
+ # option src_dport 63321
+ # option dest_port 22 # already default
+ option src_dport 22
+ option dest_ip 192.168.1.2
+ option dest lan
+config rule
+ option src wan
+ option target ACCEPT
+ option dest_port 22
+
+
+config redirect
+ option name bittorrent
+ option src vpn
+ option src_dport 63324
+ option dest_ip 192.168.1.2
+ option dest lan
+# making the port open (not sure if this is actually needed)
+config rule
+ option src vpn
+ option target ACCEPT
+ option dest_port 63324
+
+config redirect
+ option name frodobittorrent
+ option src vpn
+ option src_dport 63326
+ option dest_ip 192.168.1.3
+ option dest lan
+config rule
+ option src vpn
+ option target ACCEPT
+ option dest_port 63326
+
+
+config redirect
+ option name treetowlsyncthing
+ option src vpn
+ option src_dport 22000
+ option dest_ip 192.168.1.2
+ option dest lan
+ option proto tcp
+config rule
+ option src vpn
+ option target ACCEPT
+ option dest_port 22000
+
+
+config redirect
+ option name bithtpc
+ option src vpn
+ option src_dport 63325
+ option dest_ip 192.168.1.4
+ option dest lan
+config rule
+ option src vpn
+ option target ACCEPT
+ option dest_port 63325
+
+
+
+
+
+# http server
+ # for https
+ # config redirect
+ # option src wan
+ # option src_dport 443
+ # option dest lan
+ # option dest_ip 192.168.1.2
+ # option proto tcp
+
+ # config rule
+ # option src wan
+ # option target ACCEPT
+ # option dest_port 443
+ # option proto tcp
+
+ # config redirect
+ # option src wan
+ # option src_dport 80
+ # option dest lan
+ # option dest_ip 192.168.1.2
+ # option proto tcp
+
+ # config rule
+ # option src wan
+ # option target ACCEPT
+ # option dest_port 80
+ # option proto tcp
+
+#### end port forwarding rules ####