From 1b15cfe03f08705f77e4d7b9ba8018ca2873d835 Mon Sep 17 00:00:00 2001
From: Tommaso Bailetti <tommaso.bailetti@nethesis.it>
Date: Tue, 3 Mar 2026 10:20:25 +0100
Subject: [PATCH] fix(dpi): hardcoding the logging limit

---
 packages/ns-dpi/files/dpi-nft | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/packages/ns-dpi/files/dpi-nft b/packages/ns-dpi/files/dpi-nft
index b8d343029..d06673761 100755
--- a/packages/ns-dpi/files/dpi-nft
+++ b/packages/ns-dpi/files/dpi-nft
@@ -21,7 +21,7 @@ chain dpi_actions {
     type filter hook prerouting priority filter + 10; policy accept;
 
     {% if log_enabled -%}
-    ct label netify-blocked counter log prefix "DPI block: " limit rate {{ log_limit }}
+    ct label netify-blocked counter log prefix "DPI block: " limit rate 1/second
     {% endif -%}
     ct label netify-blocked counter reject
     ct label bulk counter ip dscp set cs1 return
@@ -37,8 +37,7 @@ def generate_dpi():
     e_uci = EUci()
     template = Environment(loader=BaseLoader()).from_string(CHAIN)
     render = template.render(
-        log_enabled=e_uci.get('dpi', 'config', 'log_blocked', dtype=bool, default=False),
-        log_limit=e_uci.get('firewall', 'ns_defaults', 'rule_log_limit', dtype=str, default='1/second')
+        log_enabled=e_uci.get('dpi', 'config', 'log_blocked', dtype=bool, default=False)
     )
     # save to nftables directory table-pre, only if the file is changed
     file_path = '/usr/share/nftables.d/table-pre/dpi_actions.nft'