From f8645e494fc45c5f24b8638386cc47be2e1285c2 Mon Sep 17 00:00:00 2001 From: Robert Langhammer Date: Wed, 3 Mar 2021 20:56:38 +0100 Subject: [PATCH] fff-firewall: Flush all installed tables. MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit With this patch all installed tables are flushed. We no longer have to worry about the modules installed or not. (nat, mangle ...) Signed-off-by: Robert Langhammer Reviewed-by: Fabian Bläse --- src/packages/fff/fff-firewall/Makefile | 2 +- .../fff/fff-firewall/files/usr/lib/firewall.d/00-prepare | 7 ++----- 2 files changed, 3 insertions(+), 6 deletions(-) diff --git a/src/packages/fff/fff-firewall/Makefile b/src/packages/fff/fff-firewall/Makefile index 69d8ec38..157b7e1b 100644 --- a/src/packages/fff/fff-firewall/Makefile +++ b/src/packages/fff/fff-firewall/Makefile @@ -1,7 +1,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=fff-firewall -PKG_RELEASE:=7 +PKG_RELEASE:=8 include $(INCLUDE_DIR)/package.mk diff --git a/src/packages/fff/fff-firewall/files/usr/lib/firewall.d/00-prepare b/src/packages/fff/fff-firewall/files/usr/lib/firewall.d/00-prepare index 5a1b9aaf..c2175f62 100644 --- a/src/packages/fff/fff-firewall/files/usr/lib/firewall.d/00-prepare +++ b/src/packages/fff/fff-firewall/files/usr/lib/firewall.d/00-prepare @@ -2,8 +2,5 @@ ebtables -F ebtables -X -iptables -F -iptables -X - -ip6tables -F -ip6tables -X +iptables-save | awk '/^[*]/ { print $1 } /^:[A-Z]+ [^-]/ { print $1 " ACCEPT" ; } /COMMIT/ { print $0; }' | iptables-restore +ip6tables-save | awk '/^[*]/ { print $1 } /^:[A-Z]+ [^-]/ { print $1 " ACCEPT" ; } /COMMIT/ { print $0; }' | ip6tables-restore