extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2025-06-26 12:42:40 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix ORIGINAL DEST issue

Browse Source
This commit is contained in:
Tom Eastep 2009-06-15 08:45:34 -07:00
parent f723bc2ef1
commit 440cc08802
1 changed files with 6 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Shorewall/Perl/Shorewall/Rules.pm
View File

@ -1293,11 +1293,13 @@ sub process_rule1 ( $$$$$$$$$$$$$ ) {
$loglevel = ''; $loglevel = '';
} }
if ( $origdest ) {
unless ( $origdest eq '-' ) { unless ( $origdest eq '-' ) {
require_capability( 'CONNTRACK_MATCH', 'ORIGINAL DEST in a non-NAT rule', 's' ) unless $actiontype & NATRULE; require_capability( 'CONNTRACK_MATCH', 'ORIGINAL DEST in a non-NAT rule', 's' ) unless $actiontype & NATRULE;
} else { } else {
$origdest = ''; $origdest = '';
} }
}
$rule .= "-m conntrack --ctorigdstport $origdstports " if $capabilities{NEW_CONNTRACK_MATCH} && $origdstports; $rule .= "-m conntrack --ctorigdstport $origdstports " if $capabilities{NEW_CONNTRACK_MATCH} && $origdstports;