From 99d89664a41cd7b2e4d397c2d6c2037dee35cafb Mon Sep 17 00:00:00 2001
From: Adamm <28355318+Adamm00@users.noreply.github.com>
Date: Wed, 7 Feb 2024 16:34:14 +1000
Subject: [PATCH] v7.5.8

Fix IOT rules logic #140
---
 firewall.sh | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/firewall.sh b/firewall.sh
index 0feec1b..9906aac 100644
--- a/firewall.sh
+++ b/firewall.sh
@@ -10,7 +10,7 @@
 #                                                                                                           #
 #                                 Router Firewall And Security Enhancements                                 #
 #                             By Adamm -  https://github.com/Adamm00/IPSet_ASUS                             #
-#                                            06/02/2024 - v7.5.7                                            #
+#                                            07/02/2024 - v7.5.8                                            #
 #############################################################################################################
 
 
@@ -538,9 +538,9 @@ Check_IPTables() {
 			if [ "$iotproto" = "all" ] || [ "$iotproto" = "udp" ]; then
 				iptables -C FORWARD -i br+ -m set --match-set Skynet-IOT src -o "$iface" -p udp -m udp --dport 123 -j ACCEPT 2>/dev/null || fail="${fail}#16 "
 			fi
-		fi
-		if [ "$iotproto" = "all" ] || [ "$iotproto" = "tcp" ]; then
-			iptables -C FORWARD -i br+ -m set --match-set Skynet-IOT src -o "$iface" -p tcp -m tcp --dport 123 -j ACCEPT 2>/dev/null || fail="${fail}#17 "
+			if [ "$iotproto" = "all" ] || [ "$iotproto" = "tcp" ]; then
+				iptables -C FORWARD -i br+ -m set --match-set Skynet-IOT src -o "$iface" -p tcp -m tcp --dport 123 -j ACCEPT 2>/dev/null || fail="${fail}#17 "
+			fi
 		fi
 	fi
 	if [ "$logmode" = "enabled" ]; then