Forward Firewall: some changes in firewall script to make collectd work

[people/teissler/ipfire-2.x.git] / src / initscripts / init.d / firewall

diff --git a/src/initscripts/init.d/firewall b/src/initscripts/init.d/firewall
index 24dee132a2ce8e6d83835a55c71ab3967f21278e..3d14143b458d78eeb72c230a7cd5c0787dd791a3 100644 (file)
--- a/src/initscripts/init.d/firewall
+++ b/src/initscripts/init.d/firewall
@@ -120,8 +120,8 @@ iptables_red() {
                fi
 
                # Outgoing masquerading (don't masqerade IPSEC (mark 50))
-               /sbin/iptables -t nat -A REDNAT -m mark --mark 50 -o $IFACE -j RETURN
-               /sbin/iptables -t nat -A REDNAT -o $IFACE -j MASQUERADE
+               #/sbin/iptables -t nat -A REDNAT -m mark --mark 50 -o $IFACE -j RETURN
+               #/sbin/iptables -t nat -A REDNAT -o $IFACE -j MASQUERADE
 
        fi
 }
@@ -318,8 +318,8 @@ case "$1" in
        /sbin/iptables -A FORWARD -j DROP -m comment --comment "DROP_FORWARD"
        
        #Only for firewall Hits statistik
-       /sbin/iptables -A POLICYFWD -j DROP  -m comment --comment "DROP_FORWARD"
-       /sbin/iptables -A POLICYOUT -j DROP  -m comment --comment "DROP_OUTPUT"
+       #/sbin/iptables -A POLICYFWD -j DROP  -m comment --comment "DROP_FORWARD"
+       #/sbin/iptables -A POLICYOUT -j DROP  -m comment --comment "DROP_OUTPUT"