Fix nets= in Shorewall6

Shorewall/Perl/Shorewall/Rules.pm

@@ -1994,7 +1994,7 @@ sub generate_matrix() {
 			    add_jump $outputref , $nextchain, 0, join( '', $interfacematch, $dest, $ipsec_out_match );
 
 			    add_jump( $outputref , $nextchain, 0, join('', $interfacematch, '-d 255.255.255.255 ' , $ipsec_out_match ) )
-				if $hostref->{options}{broadcast};
+				if $family == F_IPV4 && $hostref->{options}{broadcast};
 
 			    move_rules( $interfacechainref , $chain1ref ) unless $use_output;
 			}

Shorewall/Perl/Shorewall/Zones.pm

@@ -1017,7 +1017,7 @@ sub process_interface( $$ ) {
 	add_group_to_zone( $zone,
 			   $zoneref->{type},
 			   $interface,
-			   [ IPv4_MULTICAST ],
+			   $family == F_IPV4 ? [ IPv4_MULTICAST ] : [ IPv6_MULTICAST ] ,
 			   { destonly => 1 } ) if $hostoptionsref->{multicast} && $interfaces{$interface}{zone} ne $zone;
     }
 

Shorewall/changelog.txt

@@ -24,6 +24,8 @@ Changes in Shorewall 4.4.11
 
 11) Add PERL option.
 
+12) Fix nets= in Shorewall6
+
 Changes in Shorewall 4.4.10
 
 1)  Fix regression with scripts.

Shorewall/releasenotes.txt

@@ -263,6 +263,11 @@ I I I.  P R O B L E M S   C O R R E C T E D   I N   T H I S  R E L E A S E
 8) The generated script was missing a closing quote when
    REQUIRE_INTERFACE=Yes.
 
+9) Previously, if nets= was specified under Shorewall6, this error
+   would result:
+
+   	 ERROR: Invalid IPv6 address (224.0.0.0) : 
+                /etc/shorewall6/interfaces (line 16)
 
 ----------------------------------------------------------------------------
            I V.  K N O W N   P R O B L E M S   R E M A I N I N G