From 573fb0497a0dd253a1c08fb4d72387c90861ded1 Mon Sep 17 00:00:00 2001
From: Martin Schwenke <martin@meltin.net>
Date: Tue, 17 Jul 2012 15:26:16 +1000
Subject: Eventscripts: remove redundant firewall rules from 11.natgw

aeb70c7e7822854eb87873a5c7783e27e6e72318 said it moved these but it
redundantly duplicated them instead.  That commit also fixed the
problem because it moved the rules after delete_all() not out of the
startup event as claimed.

Signed-off-by: Martin Schwenke <martin@meltin.net>

(This used to be ctdb commit 07149edaecb3caa672163e5a3b89715557d5205a)
---
 ctdb/config/events.d/11.natgw | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/ctdb/config/events.d/11.natgw b/ctdb/config/events.d/11.natgw
index f6164cf88b..6a0fa39d11 100755
--- a/ctdb/config/events.d/11.natgw
+++ b/ctdb/config/events.d/11.natgw
@@ -54,13 +54,6 @@ case "$1" in
 	NATGWMASTER=`ctdb natgwlist | head -1 | sed -e "s/ .*//"`
 	NATGWIP=`ctdb natgwlist | head -1 | sed -e "s/^[^ ]* *//"`
 
-	CTDB_NATGW_PUBLIC_IP_HOST=`echo $CTDB_NATGW_PUBLIC_IP | sed -e "s/\/.*/\/32/"`
-
-	# block all incoming connections to the natgw address
-	iptables -D INPUT -p tcp --syn -d $CTDB_NATGW_PUBLIC_IP_HOST -j REJECT 2>/dev/null 
-	iptables -I INPUT -p tcp --syn -d $CTDB_NATGW_PUBLIC_IP_HOST -j REJECT 2>/dev/null 
-
-
 	if [ "$NATGWMASTER" = "-1" ]; then
 		echo "There is no NATGW master node"
 		exit 1
-- 
cgit