Skip to content

Commit

Permalink
Have 'weave reset' remove NPC rules
Browse files Browse the repository at this point in the history
  • Loading branch information
@bboreham
bboreham committed Nov 3, 2016
1 parent 6b79475 commit c07f40f
Showing 1 changed file with 5 additions and 0 deletions.
5 changes: 5 additions & 0 deletions weave
View file
Expand Up @@ -797,6 +797,11 @@ destroy_bridge() {
run_iptables -t filter -D INPUT -i $DOCKER_BRIDGE -p udp --dst $DOCKER_BRIDGE_IP --dport $(($PORT + 1)) -j DROP >/dev/null 2>&1 || true

run_iptables -t filter -D FORWARD -i $BRIDGE -o $BRIDGE -j ACCEPT 2>/dev/null || true
run_iptables -F WEAVE-NPC >/dev/null 2>&1 || true
run_iptables -t filter -D FORWARD -o $BRIDGE -j WEAVE-NPC 2>/dev/null || true
run_iptables -t filter -D FORWARD -o $BRIDGE -m state --state NEW -j NFLOG --nflog-group 86 2>/dev/null || true
run_iptables -t filter -D FORWARD -o $BRIDGE -j DROP 2>/dev/null || true
run_iptables -X WEAVE-NPC >/dev/null 2>&1 || true
run_iptables -t nat -F WEAVE >/dev/null 2>&1 || true
run_iptables -t nat -D POSTROUTING -j WEAVE >/dev/null 2>&1 || true
run_iptables -t nat -D POSTROUTING -o $BRIDGE -j ACCEPT >/dev/null 2>&1 || true
Expand Down

0 comments on commit c07f40f

Please sign in to comment.