From ff01ca4a4309f6b5c2be14e7069a449aa5994265 Mon Sep 17 00:00:00 2001
From: Dengfeng Liu <liudf0716@gmail.com>
Date: Thu, 26 Sep 2024 15:58:50 +0800
Subject: [PATCH] fix: when deny a client, delete its both src and dst
 connection

Signed-off-by: Dengfeng Liu <liudf0716@gmail.com>
---
 src/fw4_nft.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/fw4_nft.c b/src/fw4_nft.c
index 1480c5c2..194e8239 100644
--- a/src/fw4_nft.c
+++ b/src/fw4_nft.c
@@ -483,6 +483,7 @@ nft_fw_access(fw_access_t type, const char *ip, const char *mac, int tag)
             nft_fw_del_rule_by_ip_and_mac(ip, NULL, "mangle_postrouting_wifidogx_incoming");
             if (config->enable_del_conntrack) {
                 run_cmd("conntrack -D -s %s", ip);
+                run_cmd("conntrack -D -d %s", ip);
             }
             break;
         default: