From 8abaecbc267192463abee5b7a3bdd841d31ba4bb Mon Sep 17 00:00:00 2001
From: teastep <teastep@fbd18981-670d-0410-9b5c-8dc0c1a9a2bb>
Date: Sun, 26 Nov 2006 20:28:25 +0000
Subject: [PATCH] Fix comment regarding 'add_a_rule'

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@5010 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
---
 Shorewall/compiler | 3 +++
 Shorewall/lib.nat  | 2 +-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/Shorewall/compiler b/Shorewall/compiler
index 07fe80800..fd76716ae 100755
--- a/Shorewall/compiler
+++ b/Shorewall/compiler
@@ -1815,6 +1815,9 @@ add_a_rule() {
     case "$logtarget" in
 	ACCEPT|DROP|REJECT|CONTINUE)
 	    if [ "$SECTION" != DONE ]; then
+		#
+		# This function is called from process_default_macro() after rules are DONE
+		#
 		if [ -z "$proto" -a -z "$cli" -a -z "$serv" -a -z "$servport" -a -z "$user" -a -z "$excludesource" -a -z "$excludedest" ] ; then
 		    error_message "WARNING -- Rule \"$rule\" is a POLICY"
 		    error_message "	   -- and should be moved to the policy file"
diff --git a/Shorewall/lib.nat b/Shorewall/lib.nat
index 677bd64aa..5e746eeea 100644
--- a/Shorewall/lib.nat
+++ b/Shorewall/lib.nat
@@ -705,7 +705,7 @@ __EOF__
 	    if [ $addr = detect ]; then
 		ensurenatchain $(dnat_chain $source)
 		#
-		# The 'for loops' begun below are completed in add_a_rule() whose declaration follows
+		# The 'for loops' begun below are completed in add_a_rule() (in the compiler)
 	        #
 		indent >&3 << __EOF__