ip6t-firewall-server: remove rule ' -t mangle -A PREROUTING -m conntrack --ctstate INVALID -j DROP'.

2026-01-15 01:37:46 +01:00
parent 5943f4d1a1
commit 16eb4d7e0f
1 changed files with 11 additions and 5 deletions
--- a/16
+++ b/16
@@ -630,11 +630,17 @@ echo -e "\t\033[37m\033[1mProtections against several attacks / unwanted package
 # - Drop invalid packets
 # ---
 echononl "\tDrop invalid packets"
-if $log_invalid_packets || $log_all ; then
+
-   $ip6t -t mangle -A PREROUTING -m conntrack --ctstate INVALID -j  $LOG_TARGET $tag_log_prefix "$log_prefix Invalid packets:"
+# ---
-fi
+# Ersatzlos gestrichen
-$ip6t -t mangle -A PREROUTING -m conntrack --ctstate INVALID -j DROP
+# ---
-echo_done
+echo_skipped
 #if $log_invalid_packets || $log_all ; then
 #   $ip6t -t mangle -A PREROUTING -m conntrack --ctstate INVALID -j  $LOG_TARGET $tag_log_prefix "$log_prefix Invalid packets:"
 #fi
 #$ip6t -t mangle -A PREROUTING -m conntrack --ctstate INVALID -j DROP
 #echo_done
 # ---