From 520b8893f08afc648eeecef2b197541a92674286 Mon Sep 17 00:00:00 2001
From: Tristan PILAT <tpilat@evolix.fr>
Date: Wed, 18 Nov 2020 17:47:54 +0100
Subject: [PATCH] Delete drop rules for output since it is the default policy
 now

---
 minifirewall-start.sh | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/minifirewall-start.sh b/minifirewall-start.sh
index f758171..5616d68 100755
--- a/minifirewall-start.sh
+++ b/minifirewall-start.sh
@@ -329,10 +329,7 @@ then
     fi
 fi
 
-## Eventually, we drop the output traffic
 $NFT add rule inet minifirewall minifirewall_output ct state established,related accept
-$NFT add rule inet minifirewall minifirewall_output meta l4proto udp drop
-$NFT add rule inet minifirewall minifirewall_output meta l4proto tcp drop
 
 trap - INT TERM EXIT