extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2025-06-20 01:37:59 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix some more bugs with hosts file handling

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@6259 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2007-05-06 22:26:50 +00:00
parent f5d9097817
commit bc40507b80
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
Shorewall-perl/Shorewall/Rules.pm
View File

@ -1415,9 +1415,12 @@ sub generate_matrix() {
if ( $capabilities{POLICY_MATCH} ) { if ( $capabilities{POLICY_MATCH} ) {
my $type = $zoneref->{type}; my $type = $zoneref->{type};
my $source_ref = $zoneref->{hosts}{ipsec} || []; my $source_ref = ( $zoneref->{hosts}{ipsec} ) || {};
create_zone_dyn_chain $zone, $frwd_ref && $config{DYNAMIC_ZONES} && (@$source_ref || $type ne 'ipsec4' ); if ( $config{DYNAMIC_ZONES} ) {
no warnings;
create_zone_dyn_chain $zone, $frwd_ref if (%$source_ref || $type ne 'ipsec4' );
}
for my $interface ( keys %$source_ref ) { for my $interface ( keys %$source_ref ) {
my $arrayref = $source_ref->{$interface}; my $arrayref = $source_ref->{$interface};
@ -1425,7 +1428,7 @@ sub generate_matrix() {
my $ipsec_match = match_ipsec_in $zone , $hostref; my $ipsec_match = match_ipsec_in $zone , $hostref;
for my $net ( @{$hostref->{hosts}} ) { for my $net ( @{$hostref->{hosts}} ) {
add_rule add_rule
find_chainref( 'filter' , forward_chain $interface ) , $filter_table->{forward_chain $interface} ,
match_source_net join( '', $net, $ipsec_match, "-j $frwd_ref->n{name}" ); match_source_net join( '', $net, $ipsec_match, "-j $frwd_ref->n{name}" );
} }
} }