From 55c3c5f052046a1abc3afceb5b703c7b4cea9849 Mon Sep 17 00:00:00 2001
From: f <f@sutty.nl>
Date: Sat, 18 Jun 2022 19:53:48 -0300
Subject: [PATCH] unneeded rules

---
 templates/rules-save.j2  | 2 --
 templates/rules6-save.j2 | 2 --
 2 files changed, 4 deletions(-)

diff --git a/templates/rules-save.j2 b/templates/rules-save.j2
index c94e284..a320d49 100644
--- a/templates/rules-save.j2
+++ b/templates/rules-save.j2
@@ -6,7 +6,5 @@
 -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
 -A INPUT -m conntrack --ctstate INVALID -j DROP
 -A INPUT -p icmp -m icmp --icmp-type 8 -m conntrack --ctstate NEW -j ACCEPT
--A INPUT -p udp -m conntrack ! --ctstate NEW -j REJECT --reject-with icmp-port-unreachable
--A INPUT -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -m conntrack ! --ctstate NEW -j REJECT --reject-with tcp-reset
 -A INPUT -i lo -j ACCEPT
 COMMIT
diff --git a/templates/rules6-save.j2 b/templates/rules6-save.j2
index 1960aa3..67cf01f 100644
--- a/templates/rules6-save.j2
+++ b/templates/rules6-save.j2
@@ -7,7 +7,5 @@
 -A INPUT -m conntrack --ctstate INVALID -j DROP
 -A INPUT -p icmpv6 -j ACCEPT
 -A FORWARD -p icmpv6 -j ACCEPT
--A INPUT -p udp -m conntrack ! --ctstate NEW -j REJECT --reject-with icmp6-port-unreachable
--A INPUT -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -m conntrack ! --ctstate NEW -j REJECT --reject-with tcp-reset
 -A INPUT -i lo -j ACCEPT
 COMMIT