extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2024-11-25 09:03:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

Rename DETECT_IPADDRS to DETECT_DNAT_IPADDRS

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@129 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2002-07-09 21:21:28 +00:00
parent 90b701de4d
commit 5fb079b6f3
2 changed files with 9 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
Shorewall/firewall
View File

@ -1490,7 +1490,7 @@ add_nat_rule() {
;;
detect)
addr=
if [ -n "$DETECT_IPADDRS" && "$source"! = "$FW" ]; then
if [ -n "$DETECT_DNAT_IPADDRS" -a "$source" != "$FW" ]; then
eval interfaces=\$${source}_interfaces
for interface in $interfaces; do
addr="`find_interface_address $interface` $addr"
@ -3313,7 +3313,7 @@ do_initialize() {
ROUTE_FILTER=
NAT_BEFORE_RULES=
MULTIPORT=
DETECT_IPADDRS=
DETECT_DNAT_IPADDRS=
stopping=
have_mutex=
masq_seq=1
@ -3387,7 +3387,7 @@ do_initialize() {
ROUTE_FILTER=`added_param_value_no ROUTE_FILTER $ROUTE_FILTER`
NAT_BEFORE_RULES=`added_param_value_yes NAT_BEFORE_RULES $NAT_BEFORE_RULES`
MULTIPORT=`added_param_value_no MULTIPORT $MULTIPORT`
DETECT_IPADDRS=`added_param_value_no DETECT_IPADDRS $DETECT_IPADDRS`
DETECT_DNAT_IPADDRS=`added_param_value_no DETECT_DNAT_IPADDRS $DETECT_DNAT_IPADDRS`
}
################################################################################

10
Shorewall/shorewall.conf
View File

@ -228,7 +228,7 @@ NAT_BEFORE_RULES=Yes
MULTIPORT=No
# IP ADDRESS DETECTION
# DNAT IP Address Detection
#
# Normally when Shorewall encounters the following rule:
#
@ -251,10 +251,12 @@ MULTIPORT=No
# rule will forward connection requests on all of these addresses;
# that may not be what is desired.
#
# By setting DETECT_IPADDRS=Yes, rules such as the above will apply
# By setting DETECT_DNAT_IPADDRS=Yes, rules such as the above will apply
# only if the original destination address is the primary IP address of
# one of the interfaces associated with the source zone.
# one of the interfaces associated with the source zone. Note that this
# requires all interfaces to the source zone to be up when the firewall
# is [re]started.
DETECT_IPADDRS=No
DETECT_DNAT_IPADDRS=No
#LAST LINE -- DO NOT REMOVE