extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2025-06-25 04:01:45 +02:00
Code Issues Packages Projects Releases Wiki Activity

A few minor changes in Shorewall::Chains.

Browse Source 
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9682 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2009-03-11 01:16:45 +00:00
parent d370ba429f
commit e75789d894
1 changed files with 6 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
Shorewall/Perl/Shorewall/Chains.pm
View File

@ -669,9 +669,7 @@ sub move_rules( $$ ) {
if ( $chain1->{referenced} ) { if ( $chain1->{referenced} ) {
my @rules = @{$chain1->{rules}}; my @rules = @{$chain1->{rules}};
for ( @rules ) { assert( /^-A/ ) for @rules;
assert( /^-A/ );
}
splice @{$chain2->{rules}}, 0, 0, @rules; splice @{$chain2->{rules}}, 0, 0, @rules;
@ -1201,9 +1199,7 @@ sub finish_section ( $ ) {
for my $zone ( all_zones ) { for my $zone ( all_zones ) {
for my $zone1 ( all_zones ) { for my $zone1 ( all_zones ) {
my $chainref = $chain_table{'filter'}{"${zone}2${zone1}"}; my $chainref = $chain_table{'filter'}{"${zone}2${zone1}"};
if ( $chainref->{referenced} ) { finish_chain_section $chainref, $sections if $chainref->{referenced};
finish_chain_section $chainref, $sections;
}
} }
} }
} }
@ -2249,7 +2245,8 @@ sub set_global_variables() {
################################################################################################################ ################################################################################################################
# #
# This function provides a uniform way to generate rules (something the original Shorewall sorely needed). # This function provides a uniform way to generate Netfilter[6] rules (something the original Shorewall
# sorely needed).
# #
# Returns the destination interface specified in the rule, if any. # Returns the destination interface specified in the rule, if any.
# #
@ -2675,7 +2672,7 @@ sub expand_rule( $$$$$$$$$$$ )
} }
# #
# What follows is the code that generates the input to iptables-restore # The following code generates the input to iptables-restore
# #
# We always write the iptables-restore input into a file then pass the # We always write the iptables-restore input into a file then pass the
# file to iptables-restore. That way, if things go wrong, the user (and Shorewall support) # file to iptables-restore. That way, if things go wrong, the user (and Shorewall support)