Don't disable loopback connection tracking on 14.04
authorTom Hughes <tom@compton.nu>
Thu, 2 Aug 2018 09:47:32 +0000 (10:47 +0100)
committerTom Hughes <tom@compton.nu>
Thu, 2 Aug 2018 09:47:32 +0000 (10:47 +0100)
cookbooks/networking/templates/default/shorewall-conntrack.erb

index 4d5e726d3562c225661a1fa8fcb8fd71720c4f86..050f88e0a1acc1ea655e6f83ff2ddd6482da7835 100644 (file)
@@ -3,5 +3,7 @@
 ?FORMAT 3
 
 # ACTION       SOURCE  DEST    PROTO   DPORT   SPORT   USER    SWITCH
+<%- if node[:lsb][:release].to_f >= 16.04 %>
 NOTRACK:P      lo      -       -       -       -       -       -
 NOTRACK:O      -       lo      -       -       -       -       -
+<%- end %>