From d2189ecc163f8908baafb2448fb9d58a4cc1d6ae Mon Sep 17 00:00:00 2001 From: Tom Hughes Date: Thu, 2 Aug 2018 10:47:32 +0100 Subject: [PATCH] Don't disable loopback connection tracking on 14.04 --- cookbooks/networking/templates/default/shorewall-conntrack.erb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/cookbooks/networking/templates/default/shorewall-conntrack.erb b/cookbooks/networking/templates/default/shorewall-conntrack.erb index 4d5e726d3..050f88e0a 100644 --- a/cookbooks/networking/templates/default/shorewall-conntrack.erb +++ b/cookbooks/networking/templates/default/shorewall-conntrack.erb @@ -3,5 +3,7 @@ ?FORMAT 3 # ACTION SOURCE DEST PROTO DPORT SPORT USER SWITCH +<%- if node[:lsb][:release].to_f >= 16.04 %> NOTRACK:P lo - - - - - - NOTRACK:O - lo - - - - - +<%- end %> -- 2.43.2