summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2022-08-30 16:37:32 +0200
committerGitHub <noreply@github.com>2022-08-30 16:37:32 +0200
commit2f8ad342390cdbef98ab3ecef088fe31b7967974 (patch)
tree24b7b3236d6cd47f91f3e746b1ec7bd14f221b90
parent74f73bcebcfcd15ee5192ee5edc251f868101f30 (diff)
parent0cc7e0a49094be809cccff9fb44288d883e6ef05 (diff)
downloadvyos-1x-2f8ad342390cdbef98ab3ecef088fe31b7967974.tar.gz
vyos-1x-2f8ad342390cdbef98ab3ecef088fe31b7967974.zip
Merge pull request #1506 from sever-sever/T4655
firewall: T4655: Fix default action 'drop' for the firewall
-rw-r--r--python/vyos/template.py4
1 files changed, 2 insertions, 2 deletions
diff --git a/python/vyos/template.py b/python/vyos/template.py
index eb7f06480..62303bd55 100644
--- a/python/vyos/template.py
+++ b/python/vyos/template.py
@@ -1,4 +1,4 @@
-# Copyright 2019-2020 VyOS maintainers and contributors <maintainers@vyos.io>
+# Copyright 2019-2022 VyOS maintainers and contributors <maintainers@vyos.io>
#
# This library is free software; you can redistribute it and/or
# modify it under the terms of the GNU Lesser General Public
@@ -550,7 +550,7 @@ def nft_rule(rule_conf, fw_name, rule_id, ip_name='ip'):
@register_filter('nft_default_rule')
def nft_default_rule(fw_conf, fw_name):
output = ['counter']
- default_action = fw_conf.get('default_action', 'accept')
+ default_action = fw_conf.get('default_action', 'drop')
if 'enable_default_log' in fw_conf:
action_suffix = default_action[:1].upper()