From 3225d6493b249f80b3bc727f21bd5be9cf63be44 Mon Sep 17 00:00:00 2001
From: Alex Schultz <aschultz@redhat.com>
Date: Fri, 23 Feb 2018 06:11:27 +0000
Subject: [PATCH] Revert "Ensure FORWARD is ACCEPT by default"

This reverts commit da31c6e5baaf4abf01a6c2232a0dbac2513f0e06.

This change didn't actually solve the problem so it's best
not to continue to carry it. The correct fix is for the issue
is https://review.openstack.org/547281.

Change-Id: I4b9b4119cb5d07f74d203350611e83fa85c521da
---
 .../puppet-stack-config.yaml.template               | 13 -------------
 1 file changed, 13 deletions(-)

diff --git a/elements/puppet-stack-config/puppet-stack-config.yaml.template b/elements/puppet-stack-config/puppet-stack-config.yaml.template
index 3b6780150..60bdd38a3 100644
--- a/elements/puppet-stack-config/puppet-stack-config.yaml.template
+++ b/elements/puppet-stack-config/puppet-stack-config.yaml.template
@@ -899,19 +899,6 @@ nova::notify_on_state_change: 'vm_state'
 
 # Firewall
 tripleo::firewall::manage_firewall: true
-# Docker switches FORWARD to DROP by default which causes issues on the
-# undercloud. We are already included a REJECT rule in so switch these back
-# to ACCEPT.
-# https://bugs.launchpad.net/tripleo/+bug/1750194
-tripleo::firewall::firewall_chains:
-  'FORWARD:filter:IPv4':
-     ensure: present
-     policy: accept
-     purge: false
-  'FORWARD:filter:IPv6':
-     ensure: present
-     policy: accept
-     purge: false
 tripleo::firewall::firewall_rules:
   '105 ntp':
     dport: 123