ruleset: reduce ksoftirqd load by refering to looopback by numeric id

[project/firewall4.git] / root / usr / share / firewall4 / templates / ruleset.uc

diff --git a/root/usr/share/firewall4/templates/ruleset.uc b/root/usr/share/firewall4/templates/ruleset.uc
index f7c93fc47077de547be0315c75db230a0a2fffea..4210d64461f2861b6972b609a6e575111c26753f 100644 (file)
--- a/root/usr/share/firewall4/templates/ruleset.uc
+++ b/root/usr/share/firewall4/templates/ruleset.uc
@@ -112,7 +112,7 @@ table inet fw4 {
        chain input {
                type filter hook input priority filter; policy {{ fw4.input_policy(true) }};
 
-               iifname "lo" accept comment "!fw4: Accept traffic from loopback"
+               iif "lo" accept comment "!fw4: Accept traffic from loopback"
 
 {% fw4.includes('chain-prepend', 'input') %}
                ct state vmap { established : accept, related : accept{% if (fw4.default_option("drop_invalid")): %}, invalid : drop{% endif %} } comment "!fw4: Handle inbound flows"
@@ -154,7 +154,7 @@ table inet fw4 {
        chain output {
                type filter hook output priority filter; policy {{ fw4.output_policy(true) }};
 
-               oifname "lo" accept comment "!fw4: Accept traffic towards loopback"
+               oif "lo" accept comment "!fw4: Accept traffic towards loopback"
 
 {% fw4.includes('chain-prepend', 'output') %}
                ct state vmap { established : accept, related : accept{% if (fw4.default_option("drop_invalid")): %}, invalid : drop{% endif %} } comment "!fw4: Handle outbound flows"