firewall: Remove even more redundant rules.
authorMichael Tremer <michael.tremer@ipfire.org>
Fri, 21 Feb 2014 10:35:05 +0000 (11:35 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Fri, 21 Feb 2014 10:35:05 +0000 (11:35 +0100)
src/initscripts/init.d/firewall

index 2b3b91c..ddc4a4a 100644 (file)
@@ -230,14 +230,6 @@ iptables_init() {
 
        # read new firewall
        /usr/local/bin/firewallctrl
-
-       if [ "$DROPINPUT" == "on" ]; then
-               iptables -A INPUT   -m limit --limit 10/minute -j LOG --log-prefix "DROP_INPUT"
-       fi
-       iptables -A INPUT -j DROP -m comment --comment "DROP_INPUT"
-       if [ "$DROPFORWARD" == "on" ]; then
-               iptables -A FORWARD -m limit --limit 10/minute -j LOG --log-prefix "DROP_FORWARD"
-       fi
 }
 
 iptables_red() {