Skip to content

Commit

Permalink
firewall-defaults: remove advanced section from firewall configuration
Browse files Browse the repository at this point in the history 
Some of the options are now part of the defaults section. Some are
configured in /etc/sysctl.conf.

The openwrt defaults are sane. We use these from now on.

Addresses: freifunk-berlin/firmware#465
  • Loading branch information
@booo
booo committed Nov 3, 2018
1 parent 7fbc477 commit 268ef33
Showing 1 changed file with 0 additions and 5 deletions.
5 changes: 0 additions & 5 deletions defaults/freifunk-berlin-firewall-defaults/uci-defaults/freifunk-berlin-firewall-defaults
View file
Original file line number Diff line number Diff line change
Expand Up @@ -118,11 +118,6 @@ uci set firewall.$RULE.proto=tcp
uci set firewall.$RULE.target=ACCEPT
uci set firewall.$RULE.src=freifunk

ADVANCED="$(uci add firewall advanced)"
uci set firewall.$ADVANCED.tcp_westwood=1
uci set firewall.$ADVANCED.tcp_ecn=0
uci set firewall.$ADVANCED.ip_conntrack_max=8192

FORWARDING="$(uci add firewall forwarding)"
uci set firewall.$FORWARDING.dest=wan
uci set firewall.$FORWARDING.src=freifunk
Expand Down

0 comments on commit 268ef33

Please sign in to comment.