From e04037952d7dae366c55545c578245e24ee10c40 Mon Sep 17 00:00:00 2001
From: bol-van <k@vodka.home.kg>
Date: Sun, 2 Feb 2020 17:31:50 +0300
Subject: [PATCH] init: do not hook prerouting SYN,ACK in desync mode

---
 init.d/openwrt/functions | 4 ----
 init.d/sysv/functions    | 4 ----
 2 files changed, 8 deletions(-)

diff --git a/init.d/openwrt/functions b/init.d/openwrt/functions
index b35ff8e..8dfd63c 100644
--- a/init.d/openwrt/functions
+++ b/init.d/openwrt/functions
@@ -304,13 +304,9 @@ zapret_apply_firewall()
 			fw_nfqws_post "--dport 80" "--dport 80" $QNUM
 			;;
 	    nfqws_all_desync|nfqws_hostlist_desync)
-			rule="-m multiport --sports 80,443 $synack"
-			fw_nfqws_pre "$rule" "$rule" $QNUM                                                                                                                           
 			fw_nfqws_post "$desync" "$desync" $QNUM
 			;;
 	    nfqws_ipset_desync)
-			rule="-m multiport --sports 80,443 $synack"
-			fw_nfqws_pre "$rule $ipset_zapret src" "$rule $ipset_zapret6 src" $QNUM
 			fw_nfqws_post "$desync $ipset_zapret dst" "$desync $ipset_zapret6 dst" $QNUM
 			;;
 	    custom)
diff --git a/init.d/sysv/functions b/init.d/sysv/functions
index 197939c..497da7c 100644
--- a/init.d/sysv/functions
+++ b/init.d/sysv/functions
@@ -423,13 +423,9 @@ zapret_do_firewall()
 			fw_nfqws_post $1 "--dport 80" "--dport 80" $QNUM
 			;;
 	    nfqws_all_desync|nfqws_hostlist_desync)
-			rule="-m multiport --sports 80,443 $synack"
-			fw_nfqws_pre $1 "$rule" "$rule" $QNUM
 			fw_nfqws_post $1 "$desync" "$desync" $QNUM
 			;;
 	    nfqws_ipset_desync)
-			rule="-m multiport --sports 80,443 $synack"
-			fw_nfqws_pre $1 "$rule $ipset_zapret src" "$rule $ipset_zapret6 src" $QNUM
 			fw_nfqws_post $1 "$desync $ipset_zapret dst" "$desync $ipset_zapret6 dst" $QNUM
 			;;
 	    custom)