From 8ba06752dc540ee129ce763a404d3435720f96f2 Mon Sep 17 00:00:00 2001
From: james-otten <jamesotten1@gmail.com>
Date: Thu, 17 Oct 2024 23:55:20 -0400
Subject: [PATCH 1/2] Only for ros6

---
 Omnitik5AC/omni-only.rsc.tmpl       | 2 +-
 Omnitik5AC/omni-poe-ether5.rsc.tmpl | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/Omnitik5AC/omni-only.rsc.tmpl b/Omnitik5AC/omni-only.rsc.tmpl
index 47006a0..809d5ca 100644
--- a/Omnitik5AC/omni-only.rsc.tmpl
+++ b/Omnitik5AC/omni-only.rsc.tmpl
@@ -122,7 +122,7 @@ add address=199.170.132.0/24 list=meshaddr
 
 /ip firewall filter
 add action=accept chain=input protocol=icmp
-add action=accept chain=input dst-port=53 protocol=udp
+add action=accept chain=input dst-port=53 protocol=udp dst-address=10.0.0.0/8
 add action=accept chain=input connection-state=established,related
 add action=drop chain=input in-bridge-port=wlan2
 add action=drop chain=input src-address-list=!meshaddr
diff --git a/Omnitik5AC/omni-poe-ether5.rsc.tmpl b/Omnitik5AC/omni-poe-ether5.rsc.tmpl
index 1fe97ad..1341e8c 100644
--- a/Omnitik5AC/omni-poe-ether5.rsc.tmpl
+++ b/Omnitik5AC/omni-poe-ether5.rsc.tmpl
@@ -126,7 +126,7 @@ add address=199.170.132.0/24 list=meshaddr
 
 /ip firewall filter
 add action=accept chain=input protocol=icmp
-add action=accept chain=input dst-port=53 protocol=udp
+add action=accept chain=input dst-port=53 protocol=udp dst-address=10.0.0.0/8
 add action=accept chain=input connection-state=established,related
 add action=drop chain=input in-bridge-port=wlan2
 add action=drop chain=input src-address-list=!meshaddr

From 8d5fc467f2f7eed0f9e40a64811a8ef2ddd0257f Mon Sep 17 00:00:00 2001
From: james-otten <jamesotten1@gmail.com>
Date: Sat, 19 Oct 2024 15:55:10 -0400
Subject: [PATCH 2/2] allow from meshaddr

---
 Omnitik5AC/omni-only.rsc.tmpl       | 2 +-
 Omnitik5AC/omni-poe-ether5.rsc.tmpl | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/Omnitik5AC/omni-only.rsc.tmpl b/Omnitik5AC/omni-only.rsc.tmpl
index 809d5ca..6485c7d 100644
--- a/Omnitik5AC/omni-only.rsc.tmpl
+++ b/Omnitik5AC/omni-only.rsc.tmpl
@@ -122,7 +122,7 @@ add address=199.170.132.0/24 list=meshaddr
 
 /ip firewall filter
 add action=accept chain=input protocol=icmp
-add action=accept chain=input dst-port=53 protocol=udp dst-address=10.0.0.0/8
+add action=accept chain=input dst-port=53 protocol=udp src-address-list=meshaddr
 add action=accept chain=input connection-state=established,related
 add action=drop chain=input in-bridge-port=wlan2
 add action=drop chain=input src-address-list=!meshaddr
diff --git a/Omnitik5AC/omni-poe-ether5.rsc.tmpl b/Omnitik5AC/omni-poe-ether5.rsc.tmpl
index 1341e8c..33698d8 100644
--- a/Omnitik5AC/omni-poe-ether5.rsc.tmpl
+++ b/Omnitik5AC/omni-poe-ether5.rsc.tmpl
@@ -126,7 +126,7 @@ add address=199.170.132.0/24 list=meshaddr
 
 /ip firewall filter
 add action=accept chain=input protocol=icmp
-add action=accept chain=input dst-port=53 protocol=udp dst-address=10.0.0.0/8
+add action=accept chain=input dst-port=53 protocol=udp src-address-list=meshaddr
 add action=accept chain=input connection-state=established,related
 add action=drop chain=input in-bridge-port=wlan2
 add action=drop chain=input src-address-list=!meshaddr