From fe9bf26bcfef9c7721d70218693d843b7b9b4c5b Mon Sep 17 00:00:00 2001 From: Michael Tremer Date: Sun, 28 Apr 2013 13:26:27 +0200 Subject: [PATCH] Don't use connection tracking for loopback traffic. --- functions.firewall | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/functions.firewall b/functions.firewall index 3f0d5ff8..40cb9326 100644 --- a/functions.firewall +++ b/functions.firewall @@ -251,8 +251,8 @@ function firewall_localhost_create_chains() { log DEBUG "Creating firewall chains for localhost..." # Accept everything on lo - iptables "${protocol}" -A INPUT -i lo -m conntrack --ctstate NEW -j ACCEPT - iptables "${protocol}" -A OUTPUT -o lo -m conntrack --ctstate NEW -j ACCEPT + iptables "${protocol}" -A INPUT -i lo -j ACCEPT + iptables "${protocol}" -A OUTPUT -o lo -j ACCEPT } function firewall_zone_create_chains() { -- 2.47.3