Merge pull request #160037 from lourkeur/cleanup/firewall

2022-02-14 23:39:23 +01:00 · 2022-02-14 23:39:23 +01:00 · b3d39e3c59
commit b3d39e3c59
parent 4387ecec59 625412d2bc
1 changed files with 0 additions and 4 deletions
--- a/nixos/modules/services/networking/firewall.nix
+++ b/nixos/modules/services/networking/firewall.nix
@ -179,10 +179,6 @@ let
      ) cfg.allowedUDPPortRanges
    ) allInterfaces)}

-    # Accept IPv4 multicast.  Not a big security risk since
-    # probably nobody is listening anyway.
-    #iptables -A nixos-fw -d 224.0.0.0/4 -j nixos-fw-accept
-
    # Optionally respond to ICMPv4 pings.
    ${optionalString cfg.allowPing ''
      iptables -w -A nixos-fw -p icmp --icmp-type echo-request ${optionalString (cfg.pingLimit != null)