gsd
/
zapret
mirror of https://github.com/bol-van/zapret/
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

custom scripts: remove redundant in nft fw section

pull/113/head
bol-van 3 years ago
parent
3f5335d0ad
commit
21041346f1
4 changed files with 6 additions and 6 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      init.d/openwrt/custom-nfqws-quic4all
  2. 4
      init.d/openwrt/custom-nfqws-quic4all-complex
  3. 2
      init.d/sysv/custom-nfqws-quic4all
  4. 4
      init.d/sysv/custom-nfqws-quic4all-complex

2
init.d/openwrt/custom-nfqws-quic4all
View File

@ -44,5 +44,5 @@ zapret_custom_firewall_nft()
zapret_apply_firewall_rules_nft
f="udp dport 443"
nft_fw_nfqws_post $1 "$f $desync $first_packets_only" "$f $desync $first_packets_only" $QNUM2
nft_fw_nfqws_post "$f $desync $first_packets_only" "$f $desync $first_packets_only" $QNUM2
}

4
init.d/openwrt/custom-nfqws-quic4all-complex
View File

@ -57,9 +57,9 @@ zapret_custom_firewall_nft()
zapret_apply_firewall_rules_nft
f="udp dport 443"
nft_fw_nfqws_post $1 "$f $desync $first_packets_only" "$f $desync $first_packets_only" $QNUM2
nft_fw_nfqws_post "$f $desync $first_packets_only" "$f $desync $first_packets_only" $QNUM2
# this for ipv4 only. do not have access to ipv6 enabled TSPU to test
nft_fw_nfqws_post $1 "$f $desync $udplen $short_header4" "" $QNUM3
nft_fw_nfqws_post "$f $desync $udplen $short_header4" "" $QNUM3
# add flow offload exemption for the whole stream because we dont know when short_header rule triggers
nft_add_flow_offload_exemption "$f" "" "QUIC exemption for complex TSPU hack"
}

2
init.d/sysv/custom-nfqws-quic4all
View File

@ -44,5 +44,5 @@ zapret_custom_firewall_nft()
zapret_apply_firewall_rules_nft
f="udp dport 443"
nft_fw_nfqws_post $1 "$f $desync $first_packets_only" "$f $desync $first_packets_only" $QNUM2
nft_fw_nfqws_post "$f $desync $first_packets_only" "$f $desync $first_packets_only" $QNUM2
}

4
init.d/sysv/custom-nfqws-quic4all-complex
View File

@ -57,9 +57,9 @@ zapret_custom_firewall_nft()
zapret_apply_firewall_rules_nft
f="udp dport 443"
nft_fw_nfqws_post $1 "$f $desync $first_packets_only" "$f $desync $first_packets_only" $QNUM2
nft_fw_nfqws_post "$f $desync $first_packets_only" "$f $desync $first_packets_only" $QNUM2
# this for ipv4 only. do not have access to ipv6 enabled TSPU to test
nft_fw_nfqws_post $1 "$f $desync $udplen $short_header4" "" $QNUM3
nft_fw_nfqws_post "$f $desync $udplen $short_header4" "" $QNUM3
# add flow offload exemption for the whole stream because we dont know when short_header rule triggers
nft_add_flow_offload_exemption "$f" "" "QUIC exemption for complex TSPU hack"
}

Write Preview
Loading…
Cancel
Save