extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2024-11-23 16:13:18 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix SCTP source port filtering

Browse Source
This commit is contained in:
Tom Eastep 2009-05-05 14:13:05 -07:00
parent 94a7df0cd5
commit 5758ba3f69
2 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
Shorewall/Perl/Shorewall/Tc.pm
View File

@ -836,7 +836,7 @@ sub process_tc_filter( ) {
} elsif ( $protonumber == UDP ) {
$rule1 = join( ' ', 'match udp src', hex_value( $sport ), "0x$smask" );
} else {
$rule1 = "match u32 0x${sport}0000 0x${smask}0000 at nexthdr+0\\" ,
$rule1 = "match u32 0x${sport}0000 0x${smask}0000 at nexthdr+0" ,
}
emit( "\nrun_tc $rule\\" ,
@ -893,7 +893,7 @@ sub process_tc_filter( ) {
} elsif ( $protonumber == UDP ) {
$rule2 = join( ' ', 'match udp src', hex_value( $sport ), "0x$smask" );
} else {
$rule2 = "match u32 0x${sport}0000 0x${smask}0000 at nexthdr+0\\" ,
$rule2 = "match u32 0x${sport}0000 0x${smask}0000 at nexthdr+0" ,
}
emit( "\nrun_tc ${rule}\\",

2
Shorewall/releasenotes.txt
View File

@ -206,7 +206,7 @@ None.
Local traffic (that coming from the firewall and from the DMZ
server) is placed in the effectively unrestricted class 1:10. The
default class is guaranteed have of the download capacity and my
default class is guaranteed half of the download capacity and my
work system (172.20.1.107) is guarandeed the other half.
----------------------------------------------------------------------------