projects / 15.05 / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0fb2071) | patch
firewall: optimize DNAT rules and skip invalid rules and redirects (#14485)
authorJo-Philipp Wich <jow@openwrt.org>
Mon, 18 Nov 2013 11:59:27 +0000 (11:59 +0000)
committerJo-Philipp Wich <jow@openwrt.org>
Mon, 18 Nov 2013 11:59:27 +0000 (11:59 +0000)
commit80b1b67538d6df36412dc39a60c7ad393a48f58c
tree8808ebfeb3affb50cb7bd1308e63a8b052789887tree | snapshot
parent0fb20713f7137d08854fc5cc233377490496c2aecommit | diff
firewall: optimize DNAT rules and skip invalid rules and redirects (#14485)

- instead of writing one (or more) ACCEPT rules in the filter table
  for each redirect install a global ctstate DNAT accept rule per zone

- discard rules and redirects which have invalid options set instead
  of silently skipping the invalid values

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38849 3c298f89-4303-0410-b956-a3cf2f4a3e73
package/network/config/firewall/Makefile diff | blob | history
OpenWrt 15.05 release branch