From 1fa1f8e7d8a80c2fc893dd7c104a4977a30d3004 Mon Sep 17 00:00:00 2001
From: nico <nico@3c298f89-4303-0410-b956-a3cf2f4a3e73>
Date: Wed, 24 Sep 2008 15:10:16 +0000
Subject: firewall changes:  - implement a REJECT policy and enable it by
 default, reject packets with approriate response (closes: #3970)  - cleanup
 syn_flood and remove logging

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@12688 3c298f89-4303-0410-b956-a3cf2f4a3e73
---
 package/firewall/files/firewall.config | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

(limited to 'package/firewall/files/firewall.config')

diff --git a/package/firewall/files/firewall.config b/package/firewall/files/firewall.config
index fe5d38d2b..8ac904955 100755
--- a/package/firewall/files/firewall.config
+++ b/package/firewall/files/firewall.config
@@ -1,20 +1,20 @@
 config defaults
 	option syn_flood	1
-	option input		DROP 
+	option input		REJECT
 	option output		ACCEPT 
-	option forward		DROP 
+	option forward		REJECT
 
 config zone
 	option name		lan
 	option input	ACCEPT 
 	option output	ACCEPT 
-	option forward	DROP 
+	option forward	REJECT
 
 config zone
 	option name		wan
-	option input	DROP 
+	option input	REJECT
 	option output	ACCEPT 
-	option forward	DROP 
+	option forward	REJECT
 	option masq		1 
 
 config forwarding 
-- 
cgit v1.2.3