(fix) Fix br_netfilter disable persistence
- The persistence of the br_netfilter disable settings wasn't working due to the br_netfilter kmod loading after sysctl settings are applied. Add a udev rule so that the sysctl settings are applied when the module loads. Change-Id: I31eae66f953e644c09b86d5449ac79cf253d5df3
This commit is contained in:
parent
497691fe7d
commit
c784cc0475
|
@ -100,6 +100,10 @@ net.bridge.bridge-nf-call-ip6tables = 0
|
||||||
net.bridge.bridge-nf-call-iptables = 0
|
net.bridge.bridge-nf-call-iptables = 0
|
||||||
net.bridge.bridge-nf-call-arptables = 0
|
net.bridge.bridge-nf-call-arptables = 0
|
||||||
EOF
|
EOF
|
||||||
|
cat << EOF | sudo tee /etc/udev/rules.d/99-bridge.rules
|
||||||
|
ACTION=="add", SUBSYSTEM=="module", KERNEL=="br_netfilter", \
|
||||||
|
RUN+="/lib/systemd/systemd-sysctl --prefix=/net/bridge"
|
||||||
|
EOF
|
||||||
besteffort sudo sysctl -p /etc/sysctl.d/60-bridge.conf
|
besteffort sudo sysctl -p /etc/sysctl.d/60-bridge.conf
|
||||||
|
|
||||||
if [[ ${REQUIRE_RELOG} -eq 1 ]]; then
|
if [[ ${REQUIRE_RELOG} -eq 1 ]]; then
|
||||||
|
|
Loading…
Reference in New Issue