mwchang DD-WRT Guru
Joined: 26 Mar 2013 Posts: 1858 Location: Hung Hom, Hong Kong
|
Posted: Mon Mar 25, 2024 7:59 Post subject: iptables TRIGGER rules in the stock firewall |
|
Why are there these TRIGGER rules?
I removed them (using iptables-save with filtering, flushing all then iptables-restore), nothing bad happened so ffar!! The wifi also SEEMED to work more smoothly as well, but only time will tell.
Why are there these TRIGGER rules??
Code: | # iptables-save | grep -i trigger
-A PREROUTING -d 110.xxx.xxx.xxx/32 -j TRIGGER--trigger-proto --trigger-match 0-0 --trigger-relate 0-0
:trigger_out - [0:0]
-A FORWARD -i vlan2 -o br0 -j TRIGGER--trigger-proto --trigger-match 0-0 --trigger-relate 0-0
-A FORWARD -i br0 -j trigger_out
-A FORWARD -i vlan2 -o eth0 -j TRIGGER--trigger-proto --trigger-match 0-0 --trigger-relate 0-0
-A FORWARD -i eth0 -j trigger_out
-A FORWARD -i vlan2 -o eth1 -j TRIGGER--trigger-proto --trigger-match 0-0 --trigger-relate 0-0
-A FORWARD -i eth1 -j trigger_out
-A FORWARD -i vlan2 -o vlan1 -j TRIGGER--trigger-proto --trigger-match 0-0 --trigger-relate 0-0
-A FORWARD -i vlan1 -j trigger_out
-A FORWARD -i vlan2 -o wl0.1 -j TRIGGER--trigger-proto --trigger-match 0-0 --trigger-relate 0-0
-A FORWARD -i wl0.1 -j trigger_out
|
Update:
Removing these rules really reduced conneciton drops! Speed and signal quality was also a bit better. _________________ Router: Asus RT-N18U (rev. A1)
Drink, Blink, Stretch! Live long and prosper! May the Force and farces be with you!
Facebook: https://www.facebook.com/changmanwai
Website: https://sites.google.com/site/changmw
SETI@Home profile: http://setiathome.berkeley.edu/view_profile.php?userid=211832
GitHub: https://github.com/changmw/changmw |
|