mirror of
https://gitlab.com/shorewall/code.git
synced 2024-12-24 15:18:53 +01:00
Apply 4.2.5.3 patch to trunk
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9428 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
parent
7cb0e5c7a5
commit
e35f0fe95d
@ -52,10 +52,6 @@ our $reused = 0;
|
||||
|
||||
our $family = F_IPV4;
|
||||
|
||||
use constant { EXPORT => 0x01 ,
|
||||
TIMESTAMP => 0x02 ,
|
||||
DEBUG => 0x04 };
|
||||
|
||||
#
|
||||
# Reinitilize the package-globals in the other modules
|
||||
#
|
||||
@ -257,10 +253,6 @@ EOF
|
||||
do_iptables -X
|
||||
}
|
||||
|
||||
setcontinue() {
|
||||
do_iptables -A $1 -m state --state ESTABLISHED,RELATED -j ACCEPT
|
||||
}
|
||||
|
||||
delete_nat() {
|
||||
do_iptables -t nat -F
|
||||
do_iptables -t nat -X
|
||||
|
@ -1775,7 +1775,7 @@ sub determine_capabilities( $ ) {
|
||||
|
||||
if ( $capabilities{CONNTRACK_MATCH} ) {
|
||||
$capabilities{NEW_CONNTRACK_MATCH} = qt1( "$iptables -A $sillyname -m conntrack -p tcp --ctorigdstport 22 -j ACCEPT" );
|
||||
$capabilities{OLD_CONNTRACK_MATCH} = ! qt1( "$iptables -A $sillyname -m conntrack ! --ctorigdstport 1.2.3.4" );
|
||||
$capabilities{OLD_CONNTRACK_MATCH} = ! qt1( "$iptables -A $sillyname -m conntrack ! --ctorigdst 1.2.3.4" );
|
||||
}
|
||||
|
||||
if ( qt1( "$iptables -A $sillyname -p tcp -m multiport --dports 21,22 -j ACCEPT" ) ) {
|
||||
|
Loading…
Reference in New Issue
Block a user