When a new service becomes ready or online, it's checked if its technology
is more preferred than the one used by the currrent default gateway.
If so, this new service becomes the new default gateway.
When the tethering is enabled, a NAT rule is created to forward the
traffic between the interface playing the AP role and the interface
connected to current default gateway. The problem comes out when the
default gateway changes, because the NAT rule is disabled but not
removed from the firewall's rules list. Therefore, when the new rule is
installed also the old rule is installed because it is still in the list.
If it changes again, then three rules will be installed, and so on. They
are never removed.
This patch adds a deletion of all the rules from the firewall list exactly
after they are disabled to avoid the described problem.
Jose Blanquicet (1):
firewall: Remove old rules
src/firewall.c | 8 +++++++-
1 file changed, 7 insertions(+), 1 deletion(-)
Show replies by date