projects / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ea41da9) | patch
firewall: optimize DNAT rules and skip invalid rules and redirects (#14485)
authorjow <jow@3c298f89-4303-0410-b956-a3cf2f4a3e73>
Mon, 18 Nov 2013 11:59:27 +0000 (11:59 +0000)
committerjow <jow@3c298f89-4303-0410-b956-a3cf2f4a3e73>
Mon, 18 Nov 2013 11:59:27 +0000 (11:59 +0000)
commitcb906e78c1e1c179403fa332323fa081a4d4c32d
tree8808ebfeb3affb50cb7bd1308e63a8b052789887tree | snapshot
parentea41da9c473ee1832ad1467dcc79f8adb0b4b424commit | diff
firewall: optimize DNAT rules and skip invalid rules and redirects (#14485)

- instead of writing one (or more) ACCEPT rules in the filter table
  for each redirect install a global ctstate DNAT accept rule per zone

- discard rules and redirects which have invalid options set instead
  of silently skipping the invalid values

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38849 3c298f89-4303-0410-b956-a3cf2f4a3e73
package/network/config/firewall/Makefile diff | blob | history
OpenWRT with patches for F@ST2504n board