From 443a6e8a5f95fbea7dbb9efe254f166be7e38b35 Mon Sep 17 00:00:00 2001
From: Alexander Marx <amarx@ipfire.org>
Date: Fri, 1 Mar 2013 10:43:25 +0100
Subject: [PATCH] Forward Firewall: deleted creation of OVPNFORWARD and the
 accept rule.

---
 src/misc-progs/openvpnctrl.c | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/src/misc-progs/openvpnctrl.c b/src/misc-progs/openvpnctrl.c
index 76916f147..977e47bae 100644
--- a/src/misc-progs/openvpnctrl.c
+++ b/src/misc-progs/openvpnctrl.c
@@ -255,8 +255,8 @@ void setChainRules(char *chain, char *interface, char *protocol, char *port)
 	executeCommand(str);
 	sprintf(str, "/sbin/iptables -A %sINPUT -i tun+ -j ACCEPT", chain);
 	executeCommand(str);
-	sprintf(str, "/sbin/iptables -A %sFORWARD -i tun+ -j ACCEPT", chain);
-	executeCommand(str);
+	//sprintf(str, "/sbin/iptables -A %sFORWARD -i tun+ -j ACCEPT", chain);
+	//executeCommand(str);
 }
 
 void flushChain(char *chain) {
@@ -264,8 +264,8 @@ void flushChain(char *chain) {
 
 	sprintf(str, "/sbin/iptables -F %sINPUT", chain);
 	executeCommand(str);
-	sprintf(str, "/sbin/iptables -F %sFORWARD", chain);
-	executeCommand(str);
+	//sprintf(str, "/sbin/iptables -F %sFORWARD", chain);
+	//executeCommand(str);
 	safe_system(str);
 }
 
@@ -282,8 +282,8 @@ void deleteChainReference(char *chain) {
 	sprintf(str, "/sbin/iptables -D INPUT -j %sINPUT", chain);
 	executeCommand(str);
 	safe_system(str);
-	sprintf(str, "/sbin/iptables -D FORWARD -j %sFORWARD", chain);
-	executeCommand(str);
+	//sprintf(str, "/sbin/iptables -D FORWARD -j %sFORWARD", chain);
+	//executeCommand(str);
 	safe_system(str);
 }
 
@@ -292,8 +292,8 @@ void deleteChain(char *chain) {
 
 	sprintf(str, "/sbin/iptables -X %sINPUT", chain);
 	executeCommand(str);
-	sprintf(str, "/sbin/iptables -X %sFORWARD", chain);
-	executeCommand(str);
+	//sprintf(str, "/sbin/iptables -X %sFORWARD", chain);
+	//executeCommand(str);
 }
 
 void deleteAllChains(void) {
@@ -313,16 +313,16 @@ void createChainReference(char *chain) {
 	char str[STRING_SIZE];
 	sprintf(str, "/sbin/iptables -I INPUT %s -j %sINPUT", "14", chain);
 	executeCommand(str);
-	sprintf(str, "/sbin/iptables -I FORWARD %s -j %sFORWARD", "12", chain);
-	executeCommand(str);
+	//sprintf(str, "/sbin/iptables -I FORWARD %s -j %sFORWARD", "12", chain);
+	//executeCommand(str);
 }
 
 void createChain(char *chain) {
 	char str[STRING_SIZE];
 	sprintf(str, "/sbin/iptables -N %sINPUT", chain);
 	executeCommand(str);
-	sprintf(str, "/sbin/iptables -N %sFORWARD", chain);
-	executeCommand(str);
+	//sprintf(str, "/sbin/iptables -N %sFORWARD", chain);
+	//executeCommand(str);
 }
 
 void createAllChains(void) {
-- 
2.39.2