ruleset: reduce ksoftirqd load by refering to looopback by numeric id

[project/firewall4.git] / tests / 01_configuration / 01_ruleset

diff --git a/tests/01_configuration/01_ruleset b/tests/01_configuration/01_ruleset
index 6a30d2209974dfb408d1a85713219a3f9f47c107..c1a12c7ad91e642b2da8f5db22197332c3ba519b 100644 (file)
--- a/tests/01_configuration/01_ruleset
+++ b/tests/01_configuration/01_ruleset
@@ -110,7 +110,7 @@ table inet fw4 {
        chain input {
                type filter hook input priority filter; policy drop;
 
-               iifname "lo" accept comment "!fw4: Accept traffic from loopback"
+               iif "lo" accept comment "!fw4: Accept traffic from loopback"
 
                ct state vmap { established : accept, related : accept } comment "!fw4: Handle inbound flows"
                tcp flags & (fin | syn | rst | ack) == syn jump syn_flood comment "!fw4: Rate limit TCP syn packets"
@@ -132,7 +132,7 @@ table inet fw4 {
        chain output {
                type filter hook output priority filter; policy accept;
 
-               oifname "lo" accept comment "!fw4: Accept traffic towards loopback"
+               oif "lo" accept comment "!fw4: Accept traffic towards loopback"
 
                ct state vmap { established : accept, related : accept } comment "!fw4: Handle outbound flows"
                meta l4proto tcp counter comment "!fw4: Test-Deprecated-Rule-Option"