From 20822ca4d51c7b150e9a7cc6da446664fe4f957f Mon Sep 17 00:00:00 2001
From: Bill Nottingham <notting@redhat.com>
Date: Fri, 11 Mar 2005 21:12:29 +0000
Subject: don't do fwd policies explicitly; let setkey handle it

---
 sysconfig/network-scripts/ifdown-ipsec | 2 --
 1 file changed, 2 deletions(-)

(limited to 'sysconfig/network-scripts/ifdown-ipsec')

diff --git a/sysconfig/network-scripts/ifdown-ipsec b/sysconfig/network-scripts/ifdown-ipsec
index 37785642..cbc8e2df 100755
--- a/sysconfig/network-scripts/ifdown-ipsec
+++ b/sysconfig/network-scripts/ifdown-ipsec
@@ -57,7 +57,6 @@ if [ "$MODE" = "host" ]; then
 	setkey -c << EOF
 	spddelete $SRC $DST any -P out;
 	spddelete $DST $SRC any -P in;
-	spddelete $DST $SRC any -P fwd;
 EOF
 else
       [ -z "$SRCNET" ] && SRCNET="$SRC/32"
@@ -68,7 +67,6 @@ else
       /sbin/setkey -c >/dev/null 2>&1 << EOF
 	spddelete $SRCNET $DSTNET any -P out;
 	spddelete $DSTNET $SRCNET any -P in;
-	spddelete $DSTNET $SRCNET any -P fwd;
 EOF
 fi
 
-- 
cgit v1.2.1