[arch-commits] Commit in iptables/trunk (PKGBUILD simple_firewall.rules)
Andrea Scarpino
andrea at archlinux.org
Thu Nov 15 14:34:30 UTC 2012
Date: Thursday, November 15, 2012 @ 09:34:29
Author: andrea
Revision: 171030
Fix obsolete state usage (FS#32321)
Modified:
iptables/trunk/PKGBUILD
iptables/trunk/simple_firewall.rules
-----------------------+
PKGBUILD | 2 +-
simple_firewall.rules | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
Modified: PKGBUILD
===================================================================
--- PKGBUILD 2012-11-15 14:16:00 UTC (rev 171029)
+++ PKGBUILD 2012-11-15 14:34:29 UTC (rev 171030)
@@ -32,7 +32,7 @@
'5bb6fa526665cdd728c26f0f282f5a51f220cf88'
'2db68906b603e5268736f48c8e251f3a49da1d75'
'83b3363878e3660ce23b2ad325b53cbd6c796ecf'
- '9907f9e815592837abc7fa3264a401567b7606ab'
+ 'f085a71f467e4d7cb2cf094d9369b0bcc4bab6ec'
'cdb830137192bbe002c6d01058656bd053ed0ddd'
'd9f9f06b46b4187648e860afa0552335aafe3ce4'
'c45b738b5ec4cfb11611b984c21a83b91a2d58f3'
Modified: simple_firewall.rules
===================================================================
--- simple_firewall.rules 2012-11-15 14:16:00 UTC (rev 171029)
+++ simple_firewall.rules 2012-11-15 14:34:29 UTC (rev 171030)
@@ -3,7 +3,7 @@
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -p icmp -j ACCEPT
--A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
+-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -p tcp -j REJECT --reject-with tcp-reset
-A INPUT -p udp -j REJECT --reject-with icmp-port-unreachable
More information about the arch-commits
mailing list