From daacfa70716ce48f172862ae987c661a8cb4ef36 Mon Sep 17 00:00:00 2001
From: woOzZ2 <21095700+woOzZ2@users.noreply.github.com>
Date: Mon, 16 Oct 2023 12:05:01 +0800
Subject: [PATCH] base-files: fix OpenWrt with Docker will cause NAT loopback
 (#11588)

Fixed the problem that even if br-netfilter is disabled in package/kernel/linux/files/sysctl-br-netfilter.conf, NAT loopback will still fail. This applies to OpenWrt with Docker
---
 package/base-files/files/etc/sysctl.conf | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/package/base-files/files/etc/sysctl.conf b/package/base-files/files/etc/sysctl.conf
index ae04212f4..1d9efdf50 100644
--- a/package/base-files/files/etc/sysctl.conf
+++ b/package/base-files/files/etc/sysctl.conf
@@ -1 +1,6 @@
 # Defaults are configured in /etc/sysctl.d/* and can be customized in this file
+
+# disable bridge firewalling.(Fixed the problem that even if br-netfilter is disabled in package/kernel/linux/files/sysctl-br-netfilter.conf, NAT loopback will still fail. This applies to OpenWrt with Docker)
+net.bridge.bridge-nf-call-arptables = 0
+net.bridge.bridge-nf-call-ip6tables = 0
+net.bridge.bridge-nf-call-iptables = 0