emacs-elpa-diffs
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[elpa] externals/nftables-mode 3fd8b3f79e 26/41: comment tweaks

From: Stefan Monnier
Subject: [elpa] externals/nftables-mode 3fd8b3f79e 26/41: comment tweaks
Date: Mon, 23 May 2022 09:27:24 -0400 (EDT) 
branch: externals/nftables-mode
commit 3fd8b3f79ed8040a8defe9551ab1cc22acdec708
Author: Trent W. Buck <trentbuck@gmail.com>
Commit: Trent W. Buck <trentbuck@gmail.com>

    comment tweaks
---
 nftables-host.nft | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/nftables-host.nft b/nftables-host.nft
index 166f7cd52c..aae3681b38 100644
--- a/nftables-host.nft
+++ b/nftables-host.nft
@@ -101,11 +101,10 @@ table inet my_filter {
         # Allow those first, so we're a fast, stateful firewall.
         # After this only "ct state new" (or "ct state untracked") will remain.
         # FIXME: is a vmap here better (more efficient) than two separate 
rules?
-        # FIXME: {established or related: accept} does not match correctly!
+        # NOTE: {established or related: accept} does not match correctly!
         ct state vmap { established: accept, related: accept, invalid: drop }
 
         # Loopback traffic is needed for e.g. NFS RPC, and for debugging.
-        # FIXME: is iiftype here better than iif/iifname?
         iiftype loopback  accept
 
         # Allow *some* kinds of IPv4/ICMP and IPv6/ICMPv6.
reply via email to
[Prev in Thread] Current Thread [Next in Thread]