From 40167b70c7fb6f7543f417f4592af7685551cd5e Mon Sep 17 00:00:00 2001
From: teastep <teastep@fbd18981-670d-0410-9b5c-8dc0c1a9a2bb>
Date: Fri, 26 Jan 2007 16:30:27 +0000
Subject: [PATCH] Support address ranges and ipset names in the ADDRESSES
 column of the maclist file

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@5306 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
---
 Shorewall/lib.maclist | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/Shorewall/lib.maclist b/Shorewall/lib.maclist
index b6c55c040..9e2a907f8 100644
--- a/Shorewall/lib.maclist
+++ b/Shorewall/lib.maclist
@@ -192,12 +192,12 @@ setup_mac_lists() # $1 = Phase Number
 	    if [ -z "$addresses" ]; then
 		[ -n "$level" ] && \
 		    log_rule_limit $level $chain $(mac_chain $interface) $disposition "$LOGLIMIT" "" -A -t $MACLIST_TABLE $macpart $physdev_part
-		    run_iptables -A $chain -t $MACLIST_TABLE $macpart $physdev_part -j $target
+		run_iptables -A $chain -t $MACLIST_TABLE $macpart $physdev_part -j $target
 	    else
 		for address in $(separate_list $addresses) ; do
 		    [ -n "$level" ] && \
-			log_rule_limit $level $chain $(mac_chain $interface) $disposition "$LOGLIMIT" "" -A -t $MACLIST_TABLE $macpart -s $address $physdev_part
-			run_iptables2 -A $chain -t $MACLIST_TABLE $macpart -s $address $physdev_part -j $target
+			log_rule_limit $level $chain $(mac_chain $interface) $disposition "$LOGLIMIT" "" -A -t $MACLIST_TABLE $macpart $(match_source_hosts $address) $physdev_part
+		    run_iptables2 -A $chain -t $MACLIST_TABLE $macpart $(match_source_hosts $address) $physdev_part -j $target
 		done
 	    fi
 	done < $TMP_DIR/maclist