local.m4: Actually use the IPv6 fragmentation forbidding filter.

author Mark Wooding <mdw@distorted.org.uk>

Sun, 11 Mar 2012 16:34:38 +0000 (16:34 +0000)

committer Mark Wooding <mdw@distorted.org.uk>

Mon, 12 Mar 2012 00:13:27 +0000 (00:13 +0000)
author Mark Wooding <mdw@distorted.org.uk>
Sun, 11 Mar 2012 16:34:38 +0000 (16:34 +0000)
committer Mark Wooding <mdw@distorted.org.uk>
Mon, 12 Mar 2012 00:13:27 +0000 (00:13 +0000)
diff --git a/local.m4 b/local.m4

index f373e3f2c9c5637c2f3e2f219bd9daa91f77671d..251cf59c8c9b68014daba989d9dfe31e6f0edbea 100644 (file)
--- a/local.m4
+++ b/local.m4
@@ -161,7 +161,7 @@ case $forward in
      run iptables -A fwd-spec-nofrag -j RETURN --fragment
      run ip6tables -A fwd-spec-nofrag -j RETURN \
             -m ipv6header --soft --header frag
      run iptables -A fwd-spec-nofrag -j RETURN --fragment
      run ip6tables -A fwd-spec-nofrag -j RETURN \
             -m ipv6header --soft --header frag
-    run iptables -A FORWARD -j fwd-spec-nofrag
+    run ip46tables -A FORWARD -j fwd-spec-nofrag
  
      ## Allow ping from safe/noloop to untrusted networks.
      run iptables -A fwd-spec-nofrag -j ACCEPT \
  
      ## Allow ping from safe/noloop to untrusted networks.
      run iptables -A fwd-spec-nofrag -j ACCEPT \
author	Mark Wooding <mdw@distorted.org.uk>
	Sun, 11 Mar 2012 16:34:38 +0000 (16:34 +0000)
committer	Mark Wooding <mdw@distorted.org.uk>
	Mon, 12 Mar 2012 00:13:27 +0000 (00:13 +0000)