firewall: Remove unused CONNTRACK chain in raw table

author Michael Tremer <michael.tremer@ipfire.org>

Thu, 24 Jun 2021 17:44:35 +0000 (17:44 +0000)

committer Arne Fitzenreiter <arne_f@ipfire.org>

Wed, 24 Nov 2021 09:17:38 +0000 (09:17 +0000)
author Michael Tremer <michael.tremer@ipfire.org>
Thu, 24 Jun 2021 17:44:35 +0000 (17:44 +0000)
committer Arne Fitzenreiter <arne_f@ipfire.org>
Wed, 24 Nov 2021 09:17:38 +0000 (09:17 +0000)
diff --git a/src/initscripts/system/firewall b/src/initscripts/system/firewall

index 776e70d6eea299a865f0a190f72f4269537f2188..75ea8abdfecb86c33d18aed087665ab5de2d6fad 100644 (file)
--- a/src/initscripts/system/firewall
+++ b/src/initscripts/system/firewall
@@ -112,8 +112,6 @@ iptables_init() {
         iptables -A CONNTRACK -m conntrack --ctstate ESTABLISHED -j ACCEPT
         iptables -A CONNTRACK -m conntrack --ctstate INVALID -j DROP
         iptables -A CONNTRACK -p icmp -m conntrack --ctstate RELATED -j ACCEPT
-       iptables -t raw -N CONNTRACK
-       iptables -t raw -A PREROUTING -j CONNTRACK
  
         # Restore any connection marks
         iptables -t mangle -A PREROUTING -j CONNMARK --restore-mark
author	Michael Tremer <michael.tremer@ipfire.org>
	Thu, 24 Jun 2021 17:44:35 +0000 (17:44 +0000)
committer	Arne Fitzenreiter <arne_f@ipfire.org>
	Wed, 24 Nov 2021 09:17:38 +0000 (09:17 +0000)