diff options
| author | Franz Pletz <fpletz@fnordicwalking.de> | 2017-01-22 17:29:38 +0100 |
|---|---|---|
| committer | Franz Pletz <fpletz@fnordicwalking.de> | 2017-01-25 01:14:04 +0100 |
| commit | 8322a12ef2ce6ea5a239b2221aa6f9a2fe84d904 (patch) | |
| tree | f1057f2cff72dbccb3f3c7f72067c3fa76916dcd /nixos/tests/nat.nix | |
| parent | 403fdd737eb353734591ee59711f8c5d26ca4f90 (diff) | |
| download | nixpkgs-8322a12ef2ce6ea5a239b2221aa6f9a2fe84d904.tar nixpkgs-8322a12ef2ce6ea5a239b2221aa6f9a2fe84d904.tar.gz nixpkgs-8322a12ef2ce6ea5a239b2221aa6f9a2fe84d904.tar.bz2 nixpkgs-8322a12ef2ce6ea5a239b2221aa6f9a2fe84d904.tar.lz nixpkgs-8322a12ef2ce6ea5a239b2221aa6f9a2fe84d904.tar.xz nixpkgs-8322a12ef2ce6ea5a239b2221aa6f9a2fe84d904.tar.zst nixpkgs-8322a12ef2ce6ea5a239b2221aa6f9a2fe84d904.zip | |
firewall: disable conntrack helper autoloading by default
This was disabled in the Linux kernel since 4.7 and poses a security risk if not configured properly. https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=486dcf43da7815baa615822f3e46883ccca5400f
Diffstat (limited to 'nixos/tests/nat.nix')
| -rw-r--r-- | nixos/tests/nat.nix | 3 |
1 files changed, 0 insertions, 3 deletions
diff --git a/nixos/tests/nat.nix b/nixos/tests/nat.nix index 4fbf6446268..b16260be38c 100644 --- a/nixos/tests/nat.nix +++ b/nixos/tests/nat.nix @@ -65,9 +65,6 @@ import ./make-test.nix ({ pkgs, withFirewall, ... }: $server->succeed("echo Hello World > /home/ftp/foo.txt"); $client->succeed("curl -v ftp://server/foo.txt >&2"); - # Test whether active FTP works. - $client->succeed("curl -v -P - ftp://server/foo.txt >&2"); - # Test ICMP. $client->succeed("ping -c 1 router >&2"); $router->succeed("ping -c 1 client >&2"); |