For nat reflection inetd rules, udp/dgram requires wait, instead of nowait/0. Might help with UDP reflection.

1 files changed, 3 insertions, 1 deletions

diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc
index e806ba0..90b4064 100644
--- a/etc/inc/filter.inc
+++ b/etc/inc/filter.inc
@@ -1181,14 +1181,16 @@ function filter_generate_reflection($rule, $nordr, $rdr_ifs, $srcaddr, $dstaddr_
 							if($reflect_proto == "udp") {
 								$socktype = "dgram";
 								$dash_u = "-u ";
+								$wait = "wait\t";
 							} else {
 								$socktype = "stream";
 								$dash_u = "";
+								$wait = "nowait/0";
 							}
 							foreach ($rtarget as $targip) {
 								if (empty($targip))
 									continue;
-								$reflection_txt[] = "{$inetdport}\t{$socktype}\t{$reflect_proto}\tnowait/0\tnobody\t/usr/bin/nc\tnc {$dash_u}-w {$reflectiontimeout} {$targip} {$tda}\n";
+								$reflection_txt[] = "{$inetdport}\t{$socktype}\t{$reflect_proto}\t{$wait}\tnobody\t/usr/bin/nc\tnc {$dash_u}-w {$reflectiontimeout} {$targip} {$tda}\n";
 							}
 						}
 						$inetdport++;