From a511b9b485cb48d4d5f0f19039c7eaa0aac7703c Mon Sep 17 00:00:00 2001
From: teastep <teastep@fbd18981-670d-0410-9b5c-8dc0c1a9a2bb>
Date: Mon, 11 Nov 2002 17:38:40 +0000
Subject: [PATCH] Check for fw->fw rules

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@330 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
---
 Shorewall/firewall | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/Shorewall/firewall b/Shorewall/firewall
index ab8d9540b..60ab6a3cc 100755
--- a/Shorewall/firewall
+++ b/Shorewall/firewall
@@ -839,6 +839,14 @@ validate_rule() {
     fi
 
     dest=$serverzone
+
+    chain=${source}2${dest}
+
+    if [ "x$chain" = xfw2fw ]; then
+	error_message "WARNING: fw -> fw rules are not supported; rule \"$rule\" ignored"
+	return
+    fi
+
     #
     # Check length of port lists if MULTIPORT set
     #
@@ -2070,6 +2078,12 @@ process_rule() {
     # Create canonical chain if necessary
 
     chain=${source}2${dest}
+
+    if [ "x$chain" = xfw2fw ]; then
+	error_message "WARNING: fw -> fw rules are not supported; rule \"$rule\" ignored"
+	return
+    fi
+
     ensurechain $chain
 
     # Generate Netfilter rule(s)