firewall: Disable the PPTP and AMANDA conntrack helpers by default

These do not seem to work at the moment.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

diff --git a/lfs/configroot b/lfs/configroot
index 8de5e6b517832cf33df0f5c40d53a0f2b82e1a5d..5ed1476fb0b2e9d65d6264fc1937109b0b9ac70d 100644 (file)
--- a/lfs/configroot
+++ b/lfs/configroot
@@ -136,10 +136,15 @@ $(TARGET) :
        echo  "POLICY1=MODE2"           >> $(CONFIG_ROOT)/firewall/settings
 
        # Add conntrack helper default settings
-       for proto in AMANDA FTP H323 IRC PPTP SIP TFTP; do \
+       for proto in FTP H323 IRC SIP TFTP; do \
                echo "CONNTRACK_$${proto}=on" >> $(CONFIG_ROOT)/optionsfw/settings; \
        done
 
+       # Do not enable these by default because these are broken
+       for proto in AMANDA PPTP; do \
+               echo "CONNTRACK_$${proto}=off" >> $(CONFIG_ROOT)/optionsfw/settings; \
+       done
+
        # set converters executable
        chmod 755 /usr/sbin/convert-*