Rene Rebe:

* fixed the iptables ROCK Net module to properly remove masquerade and clam-mtu rules git-svn-id: http://www.rocklinux.org/svn/rock-linux/trunk@3332 c5f82cb5-29bc-0310-9cd0-bff59a50e3bc
20 years ago · f39531446d
1 changed files with 5 additions and 1 deletions
--- a/package/base/iptables/rocknet_iptables.sh
+++ b/package/base/iptables/rocknet_iptables.sh
@ -54,12 +54,16 @@ public_drop() {
 }

 public_clamp_mtu() {
 	addcode up 1 6 "iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN \
 	addcode up 1 6 "iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN \
 	                -j TCPMSS --clamp-mss-to-pmtu"
 	addcode down 9 6  iptables -D FORWARD -p tcp --tcp-flags SYN,RST SYN \
 	                  -j TCPMSS --clamp-mss-to-pmtu"
 }

 public_masquerade() {
 	addcode up 1 6 "iptables -t nat -A POSTROUTING -o $if \
 	                -j MASQUERADE"
 	addcode down 9 6 "iptables -t nat -D POSTROUTING -o $if \
 	                  -j MASQUERADE"
 }