fix a problem with the firewall script (multicast traffic could produce packet loss)
authorFelix Fietkau <nbd@openwrt.org>
Tue, 27 Mar 2007 16:45:10 +0000 (16:45 +0000)
committerFelix Fietkau <nbd@openwrt.org>
Tue, 27 Mar 2007 16:45:10 +0000 (16:45 +0000)
SVN-Revision: 6726

package/iptables/files/firewall.init

index 290bae1eacc48c5d1afc24bb9f4a24c5dcfc40fa..310b0ec09c415219bb155b38a173a9672b598259 100755 (executable)
@@ -100,7 +100,7 @@ start() {
        # uses the default -P DROP
        
        ### MASQ
-       iptables -t nat -A PREROUTING -m state --state NEW -j NEW 
+       iptables -t nat -A PREROUTING -m state --state NEW -p tcp -j NEW 
        iptables -t nat -A PREROUTING -j prerouting_rule
        [ -z "$WAN" ] || iptables -t nat -A PREROUTING -i "$WAN" -j prerouting_wan
        iptables -t nat -A POSTROUTING -j postrouting_rule