firewall: Remove rule that allows access to everything.
authorMichael Tremer <michael.tremer@ipfire.org>
Thu, 20 Feb 2014 12:03:28 +0000 (13:03 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Thu, 20 Feb 2014 12:03:28 +0000 (13:03 +0100)
config/firewall/rules.pl

index 09e8ae6183ce71704ebb324e08bf7de4405e710b..377483e6d2121acd64f0d96d50ca1660e0b157ce 100755 (executable)
@@ -111,7 +111,6 @@ if($param eq 'flush'){
                        system ("/usr/sbin/firewall-policy");
                }elsif($fwdfwsettings{'POLICY'} eq 'MODE2'){
                        &p2pblock;
-                       system ("iptables --wait -A $CHAIN -m conntrack --ctstate NEW -j ACCEPT");
                        system ("/usr/sbin/firewall-policy");
                        system ("/etc/sysconfig/firewall.local reload");
                }