From f0decfa63345427905b7d1eaeb38eb8a8987c8ad Mon Sep 17 00:00:00 2001
From: Daniel <dhaavi@users.noreply.github.com>
Date: Wed, 22 May 2019 16:08:15 +0200
Subject: [PATCH] Update default action and timeout for nfqueue

---
 firewall/interception/nfqueue/nfqueue.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/firewall/interception/nfqueue/nfqueue.go b/firewall/interception/nfqueue/nfqueue.go
index 2f5a7383..a737312a 100644
--- a/firewall/interception/nfqueue/nfqueue.go
+++ b/firewall/interception/nfqueue/nfqueue.go
@@ -47,7 +47,7 @@ func NewNFQueue(qid uint16) (nfq *NFQueue, err error) {
 	if os.Geteuid() != 0 {
 		return nil, errors.New("must be root to intercept packets")
 	}
-	nfq = &NFQueue{DefaultVerdict: NFQ_ACCEPT, Timeout: 100 * time.Millisecond, qid: qid, qidptr: &qid}
+	nfq = &NFQueue{DefaultVerdict: NFQ_DROP, Timeout: 3000 * time.Millisecond, qid: qid, qidptr: &qid}
 	queues[nfq.qid] = nfq
 
 	err = nfq.init()