remove requirement for ns lookup over lan

binhex · Aug 9, 2017 · fa9910d · fa9910d
1 parent 1208a41
commit fa9910d
Showing 1 changed file with 0 additions and 6 deletions.
diff --git a/run/root/iptable.sh b/run/root/iptable.sh
@@ -138,9 +138,6 @@ for lan_network_item in "${lan_network_list[@]}"; do
 
 done
 
-# accept input dns lookup
-iptables -A INPUT -p udp --sport 53 -j ACCEPT
-
 # accept input icmp (ping)
 iptables -A INPUT -p icmp --icmp-type echo-reply -j ACCEPT
 
@@ -218,9 +215,6 @@ for lan_network_item in "${lan_network_list[@]}"; do
 
 done
 
-# accept output for dns lookup
-iptables -A OUTPUT -p udp --dport 53 -j ACCEPT
-
 # accept output for icmp (ping)
 iptables -A OUTPUT -p icmp --icmp-type echo-request -j ACCEPT