X-Git-Url: http://git.ipfire.org/?p=people%2Fteissler%2Fipfire-2.x.git;a=blobdiff_plain;f=src%2Finitscripts%2Finit.d%2Ffirewall;h=0888145e28a752769c952a2cbfbdc38d38a9011b;hp=7e3248147dc7e5bbcda0ba68a4af0e21cf2881c4;hb=aff15defbc1ade178a1fbbf1fa1b592033d4fb77;hpb=218b3341b6fd9da564ee876c08d8bf2c1b0ec78d

diff --git a/src/initscripts/init.d/firewall b/src/initscripts/init.d/firewall
index 7e3248147..0888145e2 100644
--- a/src/initscripts/init.d/firewall
+++ b/src/initscripts/init.d/firewall
@@ -120,8 +120,8 @@ iptables_red() {
 		fi
 
 		# Outgoing masquerading (don't masqerade IPSEC (mark 50))
-		/sbin/iptables -t nat -A REDNAT -m mark --mark 50 -o $IFACE -j RETURN
-		/sbin/iptables -t nat -A REDNAT -o $IFACE -j MASQUERADE
+		#/sbin/iptables -t nat -A REDNAT -m mark --mark 50 -o $IFACE -j RETURN
+		#/sbin/iptables -t nat -A REDNAT -o $IFACE -j MASQUERADE
 
 	fi
 }
@@ -276,7 +276,6 @@ case "$1" in
 	/sbin/iptables -A OUTPUT -j POLICYOUT
 
 	/usr/sbin/firewall-policy
-	
 	;;
   startovpn)  
 	# run openvpn
@@ -313,6 +312,7 @@ case "$1" in
 		/sbin/iptables -A FORWARD -m limit --limit 10/minute -j LOG --log-prefix "DROP_FORWARD "
 	fi
 	/sbin/iptables -A FORWARD -j DROP -m comment --comment "DROP_FORWARD"
+	
 	;;
   stopovpn)
 	# stop openvpn