forked from extern/shorewall_code
Fix logging NAT rules
This commit is contained in:
Tom Eastep
parent
9ce5887269
commit
70f46c02cc
@ -2816,7 +2816,7 @@ sub expand_rule( $$$$$$$$$$;$ )
|
|||||||
'add',
|
'add',
|
||||||
'' );
|
'' );
|
||||||
|
|
||||||
add_rule( $chainref, $target );
|
add_rule( $chainref, $exceptionrule . $target );
|
||||||
} else {
|
} else {
|
||||||
log_rule_limit(
|
log_rule_limit(
|
||||||
$loglevel ,
|
$loglevel ,
|
||||||
|
|||||||
@ -2,6 +2,8 @@ Changes in Shorewall 4.4.0
|
|||||||
|
|
||||||
1) Fix 'compile ... -' so that it no longer requires '-v-1'
|
1) Fix 'compile ... -' so that it no longer requires '-v-1'
|
||||||
|
|
||||||
|
2) Fix rule generation for logging nat rules with no exclusion.
|
||||||
|
|
||||||
Changes in Shorewall 4.4.0-RC2
|
Changes in Shorewall 4.4.0-RC2
|
||||||
|
|
||||||
1) Fix capabilities file with Shorewall6.
|
1) Fix capabilities file with Shorewall6.
|
||||||
|
|||||||
@ -133,7 +133,12 @@ None.
|
|||||||
N E W F E A T U R E S I N 4 . 4 . 0
|
N E W F E A T U R E S I N 4 . 4 . 0
|
||||||
----------------------------------------------------------------------------
|
----------------------------------------------------------------------------
|
||||||
|
|
||||||
None.
|
1) Perviously, a nat rule (DNAT, REDIRECT, etc.) with logging
|
||||||
|
specified could cause invalid iptables input to be generated.
|
||||||
|
|
||||||
|
Example of rule:
|
||||||
|
|
||||||
|
REDIRECT:ULOG wall 82 tcp 80
|
||||||
|
|
||||||
----------------------------------------------------------------------------
|
----------------------------------------------------------------------------
|
||||||
N E W F E A T U R E S IN 4 . 4
|
N E W F E A T U R E S IN 4 . 4
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user