Tue Aug 2 04:35:55 UTC 2011

author: root <root@rshg054.dnsready.net> 2011-08-02 04:35:55 +0000
committer: root <root@rshg054.dnsready.net> 2011-08-02 04:35:55 +0000
commit: bf35116f9d203dcafce808a6c7b3dd5a0db8afbc (patch)
tree: f9551a1d3c67d2113cc5fc5c3f8816bcbaad0540 /core/iptables/iptables.conf.d
parent: 1173ff2dba7d0fd3c45f170a5e353a76b7a5da2f (diff)
1 files changed, 9 insertions, 5 deletions
diff --git a/core/iptables/iptables.conf.d b/core/iptables/iptables.conf.d
index 07bc11aa1..1c6cc7b5d 100644
--- a/core/iptables/iptables.conf.d
+++ b/core/iptables/iptables.conf.d
@@ -1,8 +1,12 @@
 # Configuration for iptables rules
-
-IPTABLES=/usr/sbin/iptables
-IP6TABLES=/usr/sbin/ip6tables
-
 IPTABLES_CONF=/etc/iptables/iptables.rules
 IP6TABLES_CONF=/etc/iptables/ip6tables.rules
-IPTABLES_FORWARD=0  # enable IP forwarding?
+
+# Enable IP forwarding (both IPv4 and IPv6)
+# NOTE: this is not the recommended way to do this, and is supported only for
+# backward compatibility. Instead, use /etc/sysctl.conf and set the following
+# options:
+# * net.ipv4.ip_forward=1
+# * net.ipv6.conf.default.forwarding=1
+# * net.ipv6.conf.all.forwarding=1
+#IPTABLES_FORWARD=0
author	root <root@rshg054.dnsready.net>	2011-08-02 04:35:55 +0000
committer	root <root@rshg054.dnsready.net>	2011-08-02 04:35:55 +0000
commit	bf35116f9d203dcafce808a6c7b3dd5a0db8afbc (patch)
tree	f9551a1d3c67d2113cc5fc5c3f8816bcbaad0540 /core/iptables/iptables.conf.d
parent	1173ff2dba7d0fd3c45f170a5e353a76b7a5da2f (diff)