diff options
author | Brian May <brian@linuxpenguins.xyz> | 2021-07-15 11:47:57 +1000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-07-15 11:47:57 +1000 |
commit | bd00a530dde4ec71aa5bc08984e33241b8b7eaa4 (patch) | |
tree | 283d1006e8bb52aeb3f2348a7ad7b0fb817400fd /sshuttle/linux.py | |
parent | 6ae0b51c61b43d7ac76b59248da0d2c127308c71 (diff) | |
parent | bc065e368d9888a2f5816e5a498dfe33cb5dca8a (diff) |
Merge pull request #661 from skuhl/no-ttl
Remove ttl hack & require -r option.
Diffstat (limited to 'sshuttle/linux.py')
-rw-r--r-- | sshuttle/linux.py | 22 |
1 files changed, 0 insertions, 22 deletions
diff --git a/sshuttle/linux.py b/sshuttle/linux.py index 7b0a471..5055fc0 100644 --- a/sshuttle/linux.py +++ b/sshuttle/linux.py @@ -49,25 +49,3 @@ def nft(family, table, action, *args): rv = ssubprocess.call(argv, env=get_env()) if rv: raise Fatal('%r returned %d' % (argv, rv)) - - -_no_ttl_module = False - - -def ipt_ttl(family, *args): - global _no_ttl_module - if not _no_ttl_module: - # we avoid infinite loops by generating server-side connections - # with ttl 63. This makes the client side not recapture those - # connections, in case client == server. - try: - argsplus = list(args) - ipt(family, *argsplus) - except Fatal: - ipt(family, *args) - # we only get here if the non-ttl attempt succeeds - log('WARNING: your iptables is missing ' - 'the ttl module.') - _no_ttl_module = True - else: - ipt(family, *args) |