]> git.ipfire.org Git - ipfire-2.x.git/commit
projects / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7326051) | patch
iptables: Replace state module by conntrack module.
authorMichael Tremer <michael.tremer@ipfire.org>
Mon, 8 Jul 2013 13:14:15 +0000 (15:14 +0200)
committerMichael Tremer <michael.tremer@ipfire.org>
Fri, 9 Aug 2013 12:15:32 +0000 (14:15 +0200)
commitb85d2a9819e5708b1716976c112b6043abe49881
treec1590e9f342c21af0004b46fa165a31b9b12218atree | snapshot
parent7326051edb1ebec404e0b81bd85292285d7a5b6bcommit | diff
iptables: Replace state module by conntrack module.

The state module is deprecated in recent releases of iptables
and should not be used any more.

Additionally, this patch adds an extra chain for all
connection tracking rules, so we can keep the entire ruleset
more small and clean.
config/forwardfw/rules.pl diff | blob | blame | history
src/initscripts/init.d/firewall diff | blob | blame | history
IPFire 2.x development tree