diff --git a/Shorewall/compiler b/Shorewall/compiler
index 07fe80800..fd76716ae 100755
--- a/Shorewall/compiler
+++ b/Shorewall/compiler
@@ -1815,6 +1815,9 @@ add_a_rule() {
     case "$logtarget" in
 	ACCEPT|DROP|REJECT|CONTINUE)
 	    if [ "$SECTION" != DONE ]; then
+		#
+		# This function is called from process_default_macro() after rules are DONE
+		#
 		if [ -z "$proto" -a -z "$cli" -a -z "$serv" -a -z "$servport" -a -z "$user" -a -z "$excludesource" -a -z "$excludedest" ] ; then
 		    error_message "WARNING -- Rule \"$rule\" is a POLICY"
 		    error_message "	   -- and should be moved to the policy file"
diff --git a/Shorewall/lib.nat b/Shorewall/lib.nat
index 677bd64aa..5e746eeea 100644
--- a/Shorewall/lib.nat
+++ b/Shorewall/lib.nat
@@ -705,7 +705,7 @@ __EOF__
 	    if [ $addr = detect ]; then
 		ensurenatchain $(dnat_chain $source)
 		#
-		# The 'for loops' begun below are completed in add_a_rule() whose declaration follows
+		# The 'for loops' begun below are completed in add_a_rule() (in the compiler)
 	        #
 		indent >&3 << __EOF__